Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2018-12169
Analyzed
More InfoOfficial Page
Source-secure@intel.com
View Known Exploited Vulnerability (KEV) details
Published At-21 Sep, 2018 | 20:29
Updated At-20 Dec, 2018 | 13:59

Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which may allow physical attacker to potentially bypass firmware authentication.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.07.6HIGH
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Primary2.04.6MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
CPE Matches
Intel Corporation
intel
>>core_i3>>4000m
cpe:2.3:h:intel:core_i3:4000m:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4005u
cpe:2.3:h:intel:core_i3:4005u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4010u
cpe:2.3:h:intel:core_i3:4010u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4010y
cpe:2.3:h:intel:core_i3:4010y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4012y
cpe:2.3:h:intel:core_i3:4012y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4020y
cpe:2.3:h:intel:core_i3:4020y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4025u
cpe:2.3:h:intel:core_i3:4025u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4030u
cpe:2.3:h:intel:core_i3:4030u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4030y
cpe:2.3:h:intel:core_i3:4030y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4100e
cpe:2.3:h:intel:core_i3:4100e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4100m
cpe:2.3:h:intel:core_i3:4100m:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4100u
cpe:2.3:h:intel:core_i3:4100u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4102e
cpe:2.3:h:intel:core_i3:4102e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4110e
cpe:2.3:h:intel:core_i3:4110e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4110m
cpe:2.3:h:intel:core_i3:4110m:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4112e
cpe:2.3:h:intel:core_i3:4112e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4120u
cpe:2.3:h:intel:core_i3:4120u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4130
cpe:2.3:h:intel:core_i3:4130:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4130t
cpe:2.3:h:intel:core_i3:4130t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4150
cpe:2.3:h:intel:core_i3:4150:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4150t
cpe:2.3:h:intel:core_i3:4150t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4158u
cpe:2.3:h:intel:core_i3:4158u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4160
cpe:2.3:h:intel:core_i3:4160:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4160t
cpe:2.3:h:intel:core_i3:4160t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4170
cpe:2.3:h:intel:core_i3:4170:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4170t
cpe:2.3:h:intel:core_i3:4170t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4330
cpe:2.3:h:intel:core_i3:4330:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4330t
cpe:2.3:h:intel:core_i3:4330t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4330te
cpe:2.3:h:intel:core_i3:4330te:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4340
cpe:2.3:h:intel:core_i3:4340:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4340te
cpe:2.3:h:intel:core_i3:4340te:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4350
cpe:2.3:h:intel:core_i3:4350:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4350t
cpe:2.3:h:intel:core_i3:4350t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4360
cpe:2.3:h:intel:core_i3:4360:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4360t
cpe:2.3:h:intel:core_i3:4360t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4370
cpe:2.3:h:intel:core_i3:4370:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4370t
cpe:2.3:h:intel:core_i3:4370t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5005u
cpe:2.3:h:intel:core_i3:5005u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5010u
cpe:2.3:h:intel:core_i3:5010u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5015u
cpe:2.3:h:intel:core_i3:5015u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5020u
cpe:2.3:h:intel:core_i3:5020u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5157u
cpe:2.3:h:intel:core_i3:5157u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6006u
cpe:2.3:h:intel:core_i3:6006u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6098p
cpe:2.3:h:intel:core_i3:6098p:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100
cpe:2.3:h:intel:core_i3:6100:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100e
cpe:2.3:h:intel:core_i3:6100e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100h
cpe:2.3:h:intel:core_i3:6100h:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100t
cpe:2.3:h:intel:core_i3:6100t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100te
cpe:2.3:h:intel:core_i3:6100te:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100u
cpe:2.3:h:intel:core_i3:6100u:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-287Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://www.securityfocus.com/bid/105387secure@intel.com
Third Party Advisory
VDB Entry
https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.htmlsecure@intel.com
Third Party Advisory
https://support.lenovo.com/us/en/solutions/LEN-20527secure@intel.com
Mitigation
Third Party Advisory
Change History
0Changes found
Details not found