CVE-2018-12171

Privilege escalation in Intel Baseboard Management Controller (BMC) firmware before version 1.43.91f76955 may allow an unprivileged user to potentially execute arbitrary code or perform denial of service over the network.

Published: Sep 12, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-12171
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
intel / bmc_firmware	-	1.43.91f76955

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00149.html

Vulnerability Database

290,018

CVE-2018-12171