CVE-2018-12177

Improper directory permissions in the ZeroConfig service in Intel(R) PROSet/Wireless WiFi Software before version 20.90.0.7 may allow an authorized user to potentially enable escalation of privilege via local access.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:intel:proset\/wireless_software:*:*:*:*:*:*:*:*
OR cpe:2.3:h:intel:dual_band_wireless-ac_3160:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_3165:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_3168:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_7260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_7260_for_desktop:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_7265\(rev_c\):-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_7265_\(rev_d\):-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_8260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_8265:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-ac_8265_desktop_kit:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-n_7260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-n_7265_\(rev_c\):-:*:*:*:*:*:*:*
cpe:2.3:h:intel:dual_band_wireless-n_7265_\(rev_d\):-:*:*:*:*:*:*:*
cpe:2.3:h:intel:tri-band_wireless-ac_17265:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:tri-band_wireless-ac_18260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:tri-band_wireless-ac_18265:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9461:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9462:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-ac_9560:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-n_7260:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-n_7265_\(rev_c\):-:*:*:*:*:*:*:*
cpe:2.3:h:intel:wireless-n_7265_\(rev_d\):-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:44

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00182.html - Patch, Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00182.html - Patch, Vendor Advisory

Information

Published : 2019-01-10 20:29

Updated : 2024-11-21 03:44


NVD link : CVE-2018-12177

Mitre link : CVE-2018-12177

CVE.ORG link : CVE-2018-12177


JSON object : View

Products Affected

intel

  • wireless-n_7265_\(rev_c\)
  • wireless-ac_9461
  • dual_band_wireless-ac_3165
  • dual_band_wireless-ac_7265\(rev_c\)
  • wireless-n_7265_\(rev_d\)
  • dual_band_wireless-n_7265_\(rev_c\)
  • dual_band_wireless-n_7260
  • dual_band_wireless-ac_8265_desktop_kit
  • dual_band_wireless-ac_3168
  • dual_band_wireless-ac_3160
  • tri-band_wireless-ac_18260
  • dual_band_wireless-ac_7265_\(rev_d\)
  • wireless-ac_9560
  • proset\/wireless_software
  • dual_band_wireless-ac_8260
  • tri-band_wireless-ac_18265
  • wireless-ac_9260
  • wireless-n_7260
  • dual_band_wireless-ac_7260_for_desktop
  • dual_band_wireless-n_7265_\(rev_d\)
  • dual_band_wireless-ac_8265
  • wireless-ac_9462
  • dual_band_wireless-ac_7260
  • tri-band_wireless-ac_17265
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource