Vulnerability Description
Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to escape from a virtual machine guest-to-host via local access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Graphics Driver | 15.33.43.4425 |
Related Weaknesses (CWE)
References
- https://support.lenovo.com/us/en/product_security/LEN-25084
- https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00189.PatchVendor Advisory
- https://support.lenovo.com/us/en/product_security/LEN-25084
- https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00189.PatchVendor Advisory
FAQ
What is CVE-2018-12223?
CVE-2018-12223 is a vulnerability with a CVSS score of 6.3 (MEDIUM). Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.506...
How severe is CVE-2018-12223?
CVE-2018-12223 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-12223?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Graphics Driver.