CVE-2018-12192 : Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11

Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before version SPS_E5_04.00.04.393.0 may allow an unauthenticated user to potentially bypass MEBx authentication via physical access.

Published 2019-03-14 20:29:00

Updated 2019-04-04 22:29:00

Source Intel Corporation

View at NVD, CVE.org

Vulnerability category: BypassGain privilege

Products affected by CVE-2018-12192

Intel » Server Platform Services Firmware
Versions before (<) sps_e5_04.00.04.393.0
cpe:2.3:o:intel:server_platform_services_firmware:*:*:*:*:*:*:*:*
Matching versions
Intel » Converged Security Management Engine Firmware
Versions from including (>=) 11.20 and before (<) 11.22.60
cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*
Matching versions
Intel » Converged Security Management Engine Firmware
Versions from including (>=) 11.0 and before (<) 11.8.60
cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*
Matching versions
Intel » Converged Security Management Engine Firmware
Versions from including (>=) 12.0.0 and before (<) 12.0.20
cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*
Matching versions
Intel » Converged Security Management Engine Firmware
Versions from including (>=) 11.10 and before (<) 11.11.60
cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-12192

EPSS FAQ

0.09%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 22 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-12192

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
6.8	MEDIUM	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	0.9	5.9	NIST
Attack Vector: Physical Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-12192

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-12192

https://security.netapp.com/advisory/ntap-20190318-0001/

Intel SA-00185 CSME-SPS-TXE-AMT Vulnerabilities in NetApp Products | NetApp Product Security

CVEs referencing this url
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03914en_us

HPESBHF03914 rev.1 - Certain HPE Servers with Intel Server Platform Services (SPS) Firmware, Multiple Local Vulnerabilities

CVEs referencing this url
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00185.html

INTEL-SA-00185
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2018-12192

Products affected by CVE-2018-12192

Exploit prediction scoring system (EPSS) score for CVE-2018-12192

CVSS scores for CVE-2018-12192

CWE ids for CVE-2018-12192

References for CVE-2018-12192