Vulnerability Details CVE-2018-3702
Improper permissions in the installer for the ITE Tech* Consumer Infrared Driver for Windows 10 versions before 5.4.3.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.5%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2018-3702
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.1.0.1
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.1.0.2
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.1.0.3
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.1.0.4
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.1.0.5
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.1.0.6
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.1.0.7
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.2.0.0
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.2.1.0
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.3.2.0
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.3.3.0
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.3.4.0
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.4.1.0
-
cpe:2.3:a:intel:ite_tech_consumer_infrared_driver:5.4.2.0
-
cpe:2.3:o:microsoft:windows_10:-