mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
74 lines
2.4 KiB
JSON
74 lines
2.4 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "secure@intel.com",
|
|
"DATE_PUBLIC" : "2018-09-19T00:00:00",
|
|
"ID" : "CVE-2018-12169",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "Intel Core Processor",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "4th Generation, 5th Generation, 6th Generation, 7th Generation, 8th Generation"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "Intel Corporation"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which may allow physical attacker to potentially bypass firmware authentication."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Elevation of Privilege"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.html",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.html"
|
|
},
|
|
{
|
|
"name" : "https://support.lenovo.com/us/en/solutions/LEN-20527",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://support.lenovo.com/us/en/solutions/LEN-20527"
|
|
},
|
|
{
|
|
"name" : "105387",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/105387"
|
|
}
|
|
]
|
|
}
|
|
}
|