Vulnerability Description
Improper permissions in the installer for Intel(R) Turbo Boost Max Technology 3.0 driver version 1.0.0.1035 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Turbo Boost Max Technology 3.0 | <= 1.0.0.1035 |
| Lenovo | Thinkstation P410 Firmware | - |
| Lenovo | Thinkstation P410 | - |
| Lenovo | Thinkstation P510 Firmware | - |
| Lenovo | Thinkstation P510 | - |
| Lenovo | Thinkstation P710 Firmware | - |
| Lenovo | Thinkstation P710 | - |
| Lenovo | Thinkstation P910 Firmware | - |
| Lenovo | Thinkstation P910 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/108770Broken LinkThird Party AdvisoryVDB Entry
- https://support.lenovo.com/us/en/product_security/LEN-27841Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00243.Vendor Advisory
- http://www.securityfocus.com/bid/108770Broken LinkThird Party AdvisoryVDB Entry
- https://support.lenovo.com/us/en/product_security/LEN-27841Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00243.Vendor Advisory
FAQ
What is CVE-2019-0164?
CVE-2019-0164 is a vulnerability with a CVSS score of 7.3 (HIGH). Improper permissions in the installer for Intel(R) Turbo Boost Max Technology 3.0 driver version 1.0.0.1035 and before may allow an authenticated user to potentially enable escalation of privilege via...
How severe is CVE-2019-0164?
CVE-2019-0164 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-0164?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Turbo Boost Max Technology 3.0, Lenovo Thinkstation P410 Firmware, Lenovo Thinkstation P410, Lenovo Thinkstation P510 Firmware, Lenovo Thinkstation P510.