CVE-2018-12172

CVE Database · CVE-2018-12172

CVE-2018-12172

· N/AModified

CVSS v3.1

N/A

EPSS

0.31%

Published

Oct 10, 2018

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Improper password hashing in firmware in Intel Server Board (S7200AP,S7200APR) and Intel Compute Module (HNS7200AP, HNS7200AP) may allow a privileged user to potentially disclose firmware passwords via local access.

Affected Products (8)

intel · s7200ap_firmwarevulnerable

intel · s7200ap

intel · hns7200ap_firmwarevulnerable

intel · hns7200ap

intel · s7200apr_firmwarevulnerable

intel · s7200apr

intel · hns7200apr_firmwarevulnerable

intel · hns7200apr

References (2)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00138.html

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00138.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs