CVE-2018-12219: Input Validation
First published: Tue Mar 12 2019(Updated: )
Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to read memory via local access via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Graphics Driver | =15.33.43.4425 | |
| Intel Graphics Driver | =15.33.45.4653 | |
| Intel Graphics Driver | =15.33.46.4885 | |
| Intel Graphics Driver | =15.36.26.4294 | |
| Intel Graphics Driver | =15.36.28.4332 | |
| Intel Graphics Driver | =15.36.31.4414 | |
| Intel Graphics Driver | =15.36.33.4578 | |
| Intel Graphics Driver | =15.36.34.4889 | |
| Intel Graphics Driver | =15.40.34.4624 | |
| Intel Graphics Driver | =15.40.36.4703 | |
| Intel Graphics Driver | =15.40.37.4835 | |
| Intel Graphics Driver | =15.40.38.4963 | |
| Intel Graphics Driver | =15.40.41.5058 | |
| Intel Graphics Driver | =15.45.18.4664 | |
| Intel Graphics Driver | =15.45.19.4678 | |
| Intel Graphics Driver | =15.45.21.4821 | |
| Intel Graphics Driver | =15.45.23.4860 | |
| Intel Graphics Driver | =24.20.100.6025 | |
| Intel Graphics Driver | =24.20.100.6094 | |
| Intel Graphics Driver | =24.20.100.6136 | |
| Intel Graphics Driver | =24.20.100.6194 | |
| Intel Graphics Driver | =24.20.100.6229 | |
| Intel Graphics Driver | =24.20.100.6286 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-12219?
CVE-2018-12219 is a vulnerability in the Intel(R) Graphics Driver for Windows* that allows an unprivileged user to potentially execute arbitrary code on a vulnerable system.
What is the severity of CVE-2018-12219?
The severity of CVE-2018-12219 is medium with a CVSS score of 5.5.
How does CVE-2018-12219 impact affected software?
CVE-2018-12219 impacts Intel Graphics Driver versions 10.18.x.5059, 10.18.x.5057, 20.19.x.5063, 21.20.x.5064, and 24.20.100.6373 on Windows* by enabling an unprivileged user to potentially execute arbitrary code.
Are there any known fixes for CVE-2018-12219?
Yes, Intel has released updated versions of the Intel Graphics Driver to address the vulnerability. It is recommended to update to the latest version available.
Where can I find more information about CVE-2018-12219?
You can find more information about CVE-2018-12219 on the Lenovo product security website and the Intel Security Center advisory.
- collector/nvd-index
- agent/severity
- agent/author
- agent/weakness
- agent/type
- agent/event
- agent/references
- agent/description
- agent/tags
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/intel
- canonical/intel graphics driver
- version/intel graphics driver/15.33.43.4425
- version/intel graphics driver/15.33.45.4653
- version/intel graphics driver/15.33.46.4885
- version/intel graphics driver/15.36.26.4294
- version/intel graphics driver/15.36.28.4332
- version/intel graphics driver/15.36.31.4414
- version/intel graphics driver/15.36.33.4578
- version/intel graphics driver/15.36.34.4889
- version/intel graphics driver/15.40.34.4624
- version/intel graphics driver/15.40.36.4703
- version/intel graphics driver/15.40.37.4835
- version/intel graphics driver/15.40.38.4963
- version/intel graphics driver/15.40.41.5058
- version/intel graphics driver/15.45.18.4664
- version/intel graphics driver/15.45.19.4678
- version/intel graphics driver/15.45.21.4821
- version/intel graphics driver/15.45.23.4860
- version/intel graphics driver/24.20.100.6025
- version/intel graphics driver/24.20.100.6094
- version/intel graphics driver/24.20.100.6136
- version/intel graphics driver/24.20.100.6194
- version/intel graphics driver/24.20.100.6229
- version/intel graphics driver/24.20.100.6286