Vulnerability Details CVE-2018-18098
Improper file verification in install routine for Intel(R) SGX SDK and Platform Software for Windows before 2.2.100 may allow an escalation of privilege via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 15.3%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 4.4
References
Products affected by CVE-2018-18098
-
cpe:2.3:a:intel:sgx_platform_software:1.8.106.40803
-
cpe:2.3:a:intel:sgx_platform_software:1.9.100.41172
-
cpe:2.3:a:intel:sgx_platform_software:1.9.105.42329
-
cpe:2.3:a:intel:sgx_platform_software:1.9.106.43403
-
cpe:2.3:a:intel:sgx_platform_software:2.0.1.101.44269
-
cpe:2.3:a:intel:sgx_platform_software:2.0.100.43647
-
cpe:2.3:a:intel:sgx_platform_software:2.1.100.46245
-
cpe:2.3:a:intel:sgx_sdk:-
-
cpe:2.3:a:intel:sgx_sdk:1.6.101.33070
-
cpe:2.3:a:intel:sgx_sdk:1.7.100.35600
-
cpe:2.3:a:intel:sgx_sdk:1.8.105.40539
-
cpe:2.3:a:intel:sgx_sdk:1.9.105.42474
-
cpe:2.3:a:intel:sgx_sdk:1.9.106.43403
-
cpe:2.3:a:intel:sgx_sdk:1.9.6
-
cpe:2.3:a:intel:sgx_sdk:2.0.1
-
cpe:2.3:a:intel:sgx_sdk:2.1
-
cpe:2.3:a:intel:sgx_sdk:2.1.2
-
cpe:2.3:o:microsoft:windows:-