CVE-2018-3624

Published Apr 5, 2018

Last updated 3 days ago

CVSS high 8.3

Overview

Description: Buffer overflow in ETWS processing module Intel XMM71xx, XMM72xx, XMM73xx, XMM74xx and Sofia 3G/R allows remote attacker to potentially execute arbitrary code via an adjacent network.
Source: secure@intel.com
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 8.3
Impact score: 6
Exploitability score: 1.6
Vector string: CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5.4
Impact score: 6.4
Exploitability score: 5.5
Vector string: AV:A/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:2g_modem_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "066AC9C9-A535-41B3-B1D8-A032B378B6C5"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:sofia_3g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0E5D7652-5616-4CE2-9F2A-12A290ECB2AA"
          },
          {
            "criteria": "cpe:2.3:h:intel:sofia_3g-r:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "00A7C203-FCEE-4A04-B0EF-56B17FACF97B"
          },
          {
            "criteria": "cpe:2.3:h:intel:sofia_3g-r_w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4CBED0FB-8114-421F-BD1A-5CEB9BB8C3A7"
          },
          {
            "criteria": "cpe:2.3:h:intel:xmm71xx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1F3E5FCF-8D35-460F-B5DE-20B2B5F84436"
          },
          {
            "criteria": "cpe:2.3:h:intel:xmm72xx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5404667A-6C3D-45B0-B8FD-F19384216E63"
          },
          {
            "criteria": "cpe:2.3:h:intel:xmm73xx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "30BC780E-C105-43CA-A5AD-E529B9624BE7"
          },
          {
            "criteria": "cpe:2.3:h:intel:xmm74xx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2621B46F-8A61-4A5F-961F-6EB225F49FB1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References