Attacker Value

Unknown

CVE-2018-12207

CVE ID

AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:

CVE ID:

Add References:

Advisory

Description: URL:

Add Another

Exploit

Description: URL:

Add Another

Mitigation

Description: URL:

Add Another

Government or Industry Alert

Description: URL:

Add Another

Miscellaneous

Description: URL:

Add Another

Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

CVE-2018-12207

Disclosure Date: November 14, 2019 •

(Last updated November 08, 2023) ▾

CVE-2018-12207 CVSS v3 Base Score: 6.5

MITRE ATT&CK Log in to add MITRE ATT&CK tag

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

MITRE ATT&CK

Select the MITRE ATT&CK Tactics that apply to this CVE

Collection

Select any Techniques used:

Data from Local System

Data from Removable Media

Data from Network Shared Drive

Input Capture

Input Capture: Keylogging

Input Capture: GUI Input Capture

Input Capture: Web Portal Capture

Input Capture: Credential API Hooking

Data Staged

Data Staged: Local Data Staging

Data Staged: Remote Data Staging

Screen Capture

Email Collection

Email Collection: Local Email Collection

Email Collection: Remote Email Collection

Email Collection: Email Forwarding Rule

Clipboard Data

Automated Collection

Audio Capture

Video Capture

Man in the Browser

Data from Information Repositories

Data from Information Repositories: Confluence

Data from Information Repositories: Sharepoint

Data from Cloud Storage Object

Man-in-the-Middle

Man-in-the-Middle: LLMNR/NBT-NS Poisoning and SMB Relay

Archive Collected Data

Archive Collected Data: Archive via Utility

Archive Collected Data: Archive via Library

Archive Collected Data: Archive via Custom Method

Command and Control

Select any Techniques used:

Data Obfuscation

Data Obfuscation: Junk Data

Data Obfuscation: Steganography

Data Obfuscation: Protocol Impersonation

Fallback Channels

Application Layer Protocol

Application Layer Protocol: Web Protocols

Application Layer Protocol: File Transfer Protocols

Application Layer Protocol: Mail Protocols

Application Layer Protocol: DNS

Proxy

Proxy: Internal Proxy

Proxy: External Proxy

Proxy: Multi-hop Proxy

Proxy: Domain Fronting

Communication Through Removable Media

Non-Application Layer Protocol

Web Service

Web Service: Dead Drop Resolver

Web Service: Bidirectional Communication

Web Service: One-Way Communication

Multi-Stage Channels

Ingress Tool Transfer

Data Encoding

Data Encoding: Standard Encoding

Data Encoding: Non-Standard Encoding

Traffic Signaling

Traffic Signaling: Port Knocking

Remote Access Software

Dynamic Resolution

Dynamic Resolution: Fast Flux DNS

Dynamic Resolution: Domain Generation Algorithms

Dynamic Resolution: DNS Calculation

Non-Standard Port

Protocol Tunneling

Encrypted Channel

Encrypted Channel: Symmetric Cryptography

Encrypted Channel: Asymmetric Cryptography

Credential Access

Select any Techniques used:

OS Credential Dumping

OS Credential Dumping: LSASS Memory

OS Credential Dumping: Security Account Manager

OS Credential Dumping: NTDS

OS Credential Dumping: LSA Secrets

OS Credential Dumping: Cached Domain Credentials

OS Credential Dumping: DCSync

OS Credential Dumping: Proc Filesystem

OS Credential Dumping: /etc/passwd and /etc/shadow

Network Sniffing

Input Capture

Input Capture: Keylogging

Input Capture: GUI Input Capture

Input Capture: Web Portal Capture

Input Capture: Credential API Hooking

Brute Force

Brute Force: Password Guessing

Brute Force: Password Cracking

Brute Force: Password Spraying

Brute Force: Credential Stuffing

Two-Factor Authentication Interception

Forced Authentication

Exploitation for Credential Access

Steal Application Access Token

Steal Web Session Cookie

Unsecured Credentials

Unsecured Credentials: Credentials In Files

Unsecured Credentials: Credentials in Registry

Unsecured Credentials: Bash History

Unsecured Credentials: Private Keys

Unsecured Credentials: Cloud Instance Metadata API

Unsecured Credentials: Group Policy Preferences

Credentials from Password Stores

Credentials from Password Stores: Keychain

Credentials from Password Stores: Securityd Memory

Credentials from Password Stores: Credentials from Web Browsers

Modify Authentication Process

Modify Authentication Process: Domain Controller Authentication

Modify Authentication Process: Password Filter DLL

Modify Authentication Process: Pluggable Authentication Modules

Man-in-the-Middle

Man-in-the-Middle: LLMNR/NBT-NS Poisoning and SMB Relay

Steal or Forge Kerberos Tickets

Steal or Forge Kerberos Tickets: Golden Ticket

Steal or Forge Kerberos Tickets: Silver Ticket

Steal or Forge Kerberos Tickets: Kerberoasting

Defense Evasion

Select any Techniques used:

Direct Volume Access

Rootkit

Obfuscated Files or Information

Obfuscated Files or Information: Binary Padding

Obfuscated Files or Information: Software Packing

Obfuscated Files or Information: Steganography

Obfuscated Files or Information: Compile After Delivery

Obfuscated Files or Information: Indicator Removal from Tools

Masquerading

Masquerading: Invalid Code Signature

Masquerading: Right-to-Left Override

Masquerading: Rename System Utilities

Masquerading: Masquerade Task or Service

Masquerading: Match Legitimate Name or Location

Masquerading: Space after Filename

Process Injection

Process Injection: Dynamic-link Library Injection

Process Injection: Portable Executable Injection

Process Injection: Thread Execution Hijacking

Process Injection: Asynchronous Procedure Call

Process Injection: Thread Local Storage

Process Injection: Ptrace System Calls

Process Injection: Proc Memory

Process Injection: Extra Window Memory Injection

Process Injection: Process Hollowing

Process Injection: Process Doppelgänging

Process Injection: VDSO Hijacking

Indicator Removal on Host

Indicator Removal on Host: Clear Windows Event Logs

Indicator Removal on Host: Clear Linux or Mac System Logs

Indicator Removal on Host: Clear Command History

Indicator Removal on Host: File Deletion

Indicator Removal on Host: Network Share Connection Removal

Indicator Removal on Host: Timestomp

Valid Accounts

Valid Accounts: Default Accounts

Valid Accounts: Domain Accounts

Valid Accounts: Local Accounts

Valid Accounts: Cloud Accounts

Modify Registry

Trusted Developer Utilities Proxy Execution

Trusted Developer Utilities Proxy Execution: MSBuild

Access Token Manipulation

Access Token Manipulation: Token Impersonation/Theft

Access Token Manipulation: Create Process with Token

Access Token Manipulation: Make and Impersonate Token

Access Token Manipulation: Parent PID Spoofing

Access Token Manipulation: SID-History Injection

Deobfuscate/Decode Files or Information

BITS Jobs

Indirect Command Execution

Traffic Signaling

Traffic Signaling: Port Knocking

Rogue Domain Controller

Exploitation for Defense Evasion

Signed Script Proxy Execution

Signed Script Proxy Execution: PubPrn

Signed Binary Proxy Execution

Signed Binary Proxy Execution: Compiled HTML File

Signed Binary Proxy Execution: Control Panel

Signed Binary Proxy Execution: CMSTP

Signed Binary Proxy Execution: InstallUtil

Signed Binary Proxy Execution: Mshta

Signed Binary Proxy Execution: Msiexec

Signed Binary Proxy Execution: Odbcconf

Signed Binary Proxy Execution: Regsvcs/Regasm

Signed Binary Proxy Execution: Regsvr32

Signed Binary Proxy Execution: Rundll32

XSL Script Processing

Template Injection

File and Directory Permissions Modification

File and Directory Permissions Modification: Windows File and Directory Permissions Modification

File and Directory Permissions Modification: Linux and Mac File and Directory Permissions Modification

Execution Guardrails

Execution Guardrails: Environmental Keying

Group Policy Modification

Virtualization/Sandbox Evasion

Virtualization/Sandbox Evasion: System Checks

Virtualization/Sandbox Evasion: User Activity Based Checks

Virtualization/Sandbox Evasion: Time Based Evasion

Unused/Unsupported Cloud Regions

Pre-OS Boot

Pre-OS Boot: System Firmware

Pre-OS Boot: Component Firmware

Pre-OS Boot: Bootkit

Abuse Elevation Control Mechanism

Abuse Elevation Control Mechanism: Setuid and Setgid

Abuse Elevation Control Mechanism: Bypass User Access Control

Abuse Elevation Control Mechanism: Sudo and Sudo Caching

Abuse Elevation Control Mechanism: Elevated Execution with Prompt

Use Alternate Authentication Material

Use Alternate Authentication Material: Application Access Token

Use Alternate Authentication Material: Pass the Hash

Use Alternate Authentication Material: Pass the Ticket

Use Alternate Authentication Material: Web Session Cookie

Subvert Trust Controls

Subvert Trust Controls: Gatekeeper Bypass

Subvert Trust Controls: Code Signing

Subvert Trust Controls: SIP and Trust Provider Hijacking

Subvert Trust Controls: Install Root Certificate

Modify Authentication Process

Modify Authentication Process: Domain Controller Authentication

Modify Authentication Process: Password Filter DLL

Modify Authentication Process: Pluggable Authentication Modules

Impair Defenses

Impair Defenses: Disable or Modify Tools

Impair Defenses: Disable Windows Event Logging

Impair Defenses: HISTCONTROL

Impair Defenses: Disable or Modify System Firewall

Impair Defenses: Indicator Blocking

Impair Defenses: Disable or Modify Cloud Firewall

Hide Artifacts

Hide Artifacts: Hidden Files and Directories

Hide Artifacts: Hidden Users

Hide Artifacts: Hidden Window

Hide Artifacts: NTFS File Attributes

Hide Artifacts: Hidden File System

Hide Artifacts: Run Virtual Instance

Hijack Execution Flow

Hijack Execution Flow: DLL Search Order Hijacking

Hijack Execution Flow: DLL Side-Loading

Hijack Execution Flow: Dylib Hijacking

Hijack Execution Flow: Executable Installer File Permissions Weakness

Hijack Execution Flow: LD_PRELOAD

Hijack Execution Flow: Path Interception by PATH Environment Variable

Hijack Execution Flow: Path Interception by Search Order Hijacking

Hijack Execution Flow: Path Interception by Unquoted Path

Hijack Execution Flow: Services File Permissions Weakness

Hijack Execution Flow: Services Registry Permissions Weakness

Hijack Execution Flow: COR_PROFILER

Modify Cloud Compute Infrastructure

Modify Cloud Compute Infrastructure: Create Snapshot

Modify Cloud Compute Infrastructure: Create Cloud Instance

Modify Cloud Compute Infrastructure: Delete Cloud Instance

Modify Cloud Compute Infrastructure: Revert Cloud Instance

Discovery

Select any Techniques used:

System Service Discovery

Application Window Discovery

Query Registry

System Network Configuration Discovery

Remote System Discovery

System Owner/User Discovery

Network Sniffing

Network Service Scanning

System Network Connections Discovery

Process Discovery

Permission Groups Discovery

Permission Groups Discovery: Local Groups

Permission Groups Discovery: Domain Groups

Permission Groups Discovery: Cloud Groups

System Information Discovery

File and Directory Discovery

Account Discovery

Account Discovery: Local Account

Account Discovery: Domain Account

Account Discovery: Email Account

Account Discovery: Cloud Account

Peripheral Device Discovery

System Time Discovery

Network Share Discovery

Password Policy Discovery

Browser Bookmark Discovery

Domain Trust Discovery

Virtualization/Sandbox Evasion

Virtualization/Sandbox Evasion: System Checks

Virtualization/Sandbox Evasion: User Activity Based Checks

Virtualization/Sandbox Evasion: Time Based Evasion

Software Discovery

Software Discovery: Security Software Discovery

Cloud Service Discovery

Cloud Service Dashboard

Execution

Select any Techniques used:

Windows Management Instrumentation

Scheduled Task/Job

Scheduled Task/Job: At (Linux)

Scheduled Task/Job: At (Windows)

Scheduled Task/Job: Cron

Scheduled Task/Job: Launchd

Scheduled Task/Job: Scheduled Task

Command and Scripting Interpreter

Command and Scripting Interpreter: PowerShell

Command and Scripting Interpreter: AppleScript

Command and Scripting Interpreter: Windows Command Shell

Command and Scripting Interpreter: Unix Shell

Command and Scripting Interpreter: Visual Basic

Command and Scripting Interpreter: Python

Command and Scripting Interpreter: JavaScript/JScript

Software Deployment Tools

Native API

Shared Modules

Exploitation for Client Execution

User Execution

User Execution: Malicious Link

User Execution: Malicious File

Inter-Process Communication

Inter-Process Communication: Component Object Model

Inter-Process Communication: Dynamic Data Exchange

System Services

System Services: Launchctl

System Services: Service Execution

Exfiltration

Select any Techniques used:

Exfiltration Over Other Network Medium

Exfiltration Over Other Network Medium: Exfiltration Over Bluetooth

Automated Exfiltration

Scheduled Transfer

Data Transfer Size Limits

Exfiltration Over C2 Channel

Exfiltration Over Alternative Protocol

Exfiltration Over Alternative Protocol: Exfiltration Over Symmetric Encrypted Non-C2 Protocol

Exfiltration Over Alternative Protocol: Exfiltration Over Asymmetric Encrypted Non-C2 Protocol

Exfiltration Over Alternative Protocol: Exfiltration Over Unencrypted/Obfuscated Non-C2 Protocol

Exfiltration Over Physical Medium

Exfiltration Over Physical Medium: Exfiltration over USB

Transfer Data to Cloud Account

Exfiltration Over Web Service

Exfiltration Over Web Service: Exfiltration to Code Repository

Exfiltration Over Web Service: Exfiltration to Cloud Storage

Impact

Select any Techniques used:

Data Destruction

Data Encrypted for Impact

Service Stop

Inhibit System Recovery

Defacement

Defacement: Internal Defacement

Defacement: External Defacement

Firmware Corruption

Resource Hijacking

Network Denial of Service

Network Denial of Service: Direct Network Flood

Network Denial of Service: Reflection Amplification

Endpoint Denial of Service

Endpoint Denial of Service: OS Exhaustion Flood

Endpoint Denial of Service: Service Exhaustion Flood

Endpoint Denial of Service: Application Exhaustion Flood

Endpoint Denial of Service: Application or System Exploitation

System Shutdown/Reboot

Account Access Removal

Disk Wipe

Disk Wipe: Disk Content Wipe

Disk Wipe: Disk Structure Wipe

Data Manipulation

Data Manipulation: Stored Data Manipulation

Data Manipulation: Transmitted Data Manipulation

Data Manipulation: Runtime Data Manipulation

Initial Access

Select any Techniques used:

Valid Accounts

Valid Accounts: Default Accounts

Valid Accounts: Domain Accounts

Valid Accounts: Local Accounts

Valid Accounts: Cloud Accounts

Replication Through Removable Media

External Remote Services

Drive-by Compromise

Exploit Public-Facing Application

Supply Chain Compromise

Supply Chain Compromise: Compromise Software Dependencies and Development Tools

Supply Chain Compromise: Compromise Software Supply Chain

Supply Chain Compromise: Compromise Hardware Supply Chain

Trusted Relationship

Hardware Additions

Phishing

Phishing: Spearphishing Attachment

Phishing: Spearphishing Link

Phishing: Spearphishing via Service

Lateral Movement

Select any Techniques used:

Remote Services

Remote Services: Remote Desktop Protocol

Remote Services: SMB/Windows Admin Shares

Remote Services: Distributed Component Object Model

Remote Services: SSH

Remote Services: VNC

Remote Services: Windows Remote Management

Software Deployment Tools

Taint Shared Content

Replication Through Removable Media

Exploitation of Remote Services

Internal Spearphishing

Use Alternate Authentication Material

Use Alternate Authentication Material: Application Access Token

Use Alternate Authentication Material: Pass the Hash

Use Alternate Authentication Material: Pass the Ticket

Use Alternate Authentication Material: Web Session Cookie

Remote Service Session Hijacking

Remote Service Session Hijacking: SSH Hijacking

Remote Service Session Hijacking: RDP Hijacking

Lateral Tool Transfer

Persistence

Select any Techniques used:

Boot or Logon Initialization Scripts

Boot or Logon Initialization Scripts: Logon Script (Windows)

Boot or Logon Initialization Scripts: Logon Script (Mac)

Boot or Logon Initialization Scripts: Network Logon Script

Boot or Logon Initialization Scripts: Rc.common

Boot or Logon Initialization Scripts: Startup Items

Scheduled Task/Job

Scheduled Task/Job: At (Linux)

Scheduled Task/Job: At (Windows)

Scheduled Task/Job: Cron

Scheduled Task/Job: Launchd

Scheduled Task/Job: Scheduled Task

Valid Accounts

Valid Accounts: Default Accounts

Valid Accounts: Domain Accounts

Valid Accounts: Local Accounts

Valid Accounts: Cloud Accounts

Account Manipulation

Account Manipulation: Additional Azure Service Principal Credentials

Account Manipulation: Exchange Email Delegate Permissions

Account Manipulation: Add Office 365 Global Administrator Role

Account Manipulation: SSH Authorized Keys

External Remote Services

Create Account

Create Account: Local Account

Create Account: Domain Account

Create Account: Cloud Account

Office Application Startup

Office Application Startup: Office Template Macros

Office Application Startup: Office Test

Office Application Startup: Outlook Forms

Office Application Startup: Outlook Home Page

Office Application Startup: Outlook Rules

Office Application Startup: Add-ins

Browser Extensions

BITS Jobs

Traffic Signaling

Traffic Signaling: Port Knocking

Server Software Component

Server Software Component: SQL Stored Procedures

Server Software Component: Transport Agent

Server Software Component: Web Shell

Implant Container Image

Pre-OS Boot

Pre-OS Boot: System Firmware

Pre-OS Boot: Component Firmware

Pre-OS Boot: Bootkit

Create or Modify System Process

Create or Modify System Process: Launch Agent

Create or Modify System Process: Systemd Service

Create or Modify System Process: Windows Service

Create or Modify System Process: Launch Daemon

Event Triggered Execution

Event Triggered Execution: Change Default File Association

Event Triggered Execution: Screensaver

Event Triggered Execution: Windows Management Instrumentation Event Subscription

Event Triggered Execution: .bash_profile and .bashrc

Event Triggered Execution: Trap

Event Triggered Execution: LC_LOAD_DYLIB Addition

Event Triggered Execution: Netsh Helper DLL

Event Triggered Execution: Accessibility Features

Event Triggered Execution: AppCert DLLs

Event Triggered Execution: AppInit DLLs

Event Triggered Execution: Application Shimming

Event Triggered Execution: Image File Execution Options Injection

Event Triggered Execution: PowerShell Profile

Event Triggered Execution: Emond

Event Triggered Execution: Component Object Model Hijacking

Boot or Logon Autostart Execution

Boot or Logon Autostart Execution: Registry Run Keys / Startup Folder

Boot or Logon Autostart Execution: Authentication Package

Boot or Logon Autostart Execution: Time Providers

Boot or Logon Autostart Execution: Winlogon Helper DLL

Boot or Logon Autostart Execution: Security Support Provider

Boot or Logon Autostart Execution: Kernel Modules and Extensions

Boot or Logon Autostart Execution: Re-opened Applications

Boot or Logon Autostart Execution: LSASS Driver

Boot or Logon Autostart Execution: Shortcut Modification

Boot or Logon Autostart Execution: Port Monitors

Boot or Logon Autostart Execution: Plist Modification

Compromise Client Software Binary

Hijack Execution Flow

Hijack Execution Flow: DLL Search Order Hijacking

Hijack Execution Flow: DLL Side-Loading

Hijack Execution Flow: Dylib Hijacking

Hijack Execution Flow: Executable Installer File Permissions Weakness

Hijack Execution Flow: LD_PRELOAD

Hijack Execution Flow: Path Interception by PATH Environment Variable

Hijack Execution Flow: Path Interception by Search Order Hijacking

Hijack Execution Flow: Path Interception by Unquoted Path

Hijack Execution Flow: Services File Permissions Weakness

Hijack Execution Flow: Services Registry Permissions Weakness

Hijack Execution Flow: COR_PROFILER

Privilege Escalation

Select any Techniques used:

Boot or Logon Initialization Scripts

Boot or Logon Initialization Scripts: Logon Script (Windows)

Boot or Logon Initialization Scripts: Logon Script (Mac)

Boot or Logon Initialization Scripts: Network Logon Script

Boot or Logon Initialization Scripts: Rc.common

Boot or Logon Initialization Scripts: Startup Items

Scheduled Task/Job

Scheduled Task/Job: At (Linux)

Scheduled Task/Job: At (Windows)

Scheduled Task/Job: Cron

Scheduled Task/Job: Launchd

Scheduled Task/Job: Scheduled Task

Process Injection

Process Injection: Dynamic-link Library Injection

Process Injection: Portable Executable Injection

Process Injection: Thread Execution Hijacking

Process Injection: Asynchronous Procedure Call

Process Injection: Thread Local Storage

Process Injection: Ptrace System Calls

Process Injection: Proc Memory

Process Injection: Extra Window Memory Injection

Process Injection: Process Hollowing

Process Injection: Process Doppelgänging

Process Injection: VDSO Hijacking

Exploitation for Privilege Escalation

Valid Accounts

Valid Accounts: Default Accounts

Valid Accounts: Domain Accounts

Valid Accounts: Local Accounts

Valid Accounts: Cloud Accounts

Access Token Manipulation

Access Token Manipulation: Token Impersonation/Theft

Access Token Manipulation: Create Process with Token

Access Token Manipulation: Make and Impersonate Token

Access Token Manipulation: Parent PID Spoofing

Access Token Manipulation: SID-History Injection

Group Policy Modification

Create or Modify System Process

Create or Modify System Process: Launch Agent

Create or Modify System Process: Systemd Service

Create or Modify System Process: Windows Service

Create or Modify System Process: Launch Daemon

Event Triggered Execution

Event Triggered Execution: Change Default File Association

Event Triggered Execution: Screensaver

Event Triggered Execution: Windows Management Instrumentation Event Subscription

Event Triggered Execution: .bash_profile and .bashrc

Event Triggered Execution: Trap

Event Triggered Execution: LC_LOAD_DYLIB Addition

Event Triggered Execution: Netsh Helper DLL

Event Triggered Execution: Accessibility Features

Event Triggered Execution: AppCert DLLs

Event Triggered Execution: AppInit DLLs

Event Triggered Execution: Application Shimming

Event Triggered Execution: Image File Execution Options Injection

Event Triggered Execution: PowerShell Profile

Event Triggered Execution: Emond

Event Triggered Execution: Component Object Model Hijacking

Boot or Logon Autostart Execution

Boot or Logon Autostart Execution: Registry Run Keys / Startup Folder

Boot or Logon Autostart Execution: Authentication Package

Boot or Logon Autostart Execution: Time Providers

Boot or Logon Autostart Execution: Winlogon Helper DLL

Boot or Logon Autostart Execution: Security Support Provider

Boot or Logon Autostart Execution: Kernel Modules and Extensions

Boot or Logon Autostart Execution: Re-opened Applications

Boot or Logon Autostart Execution: LSASS Driver

Boot or Logon Autostart Execution: Shortcut Modification

Boot or Logon Autostart Execution: Port Monitors

Boot or Logon Autostart Execution: Plist Modification

Abuse Elevation Control Mechanism

Abuse Elevation Control Mechanism: Setuid and Setgid

Abuse Elevation Control Mechanism: Bypass User Access Control

Abuse Elevation Control Mechanism: Sudo and Sudo Caching

Abuse Elevation Control Mechanism: Elevated Execution with Prompt

Hijack Execution Flow

Hijack Execution Flow: DLL Search Order Hijacking

Hijack Execution Flow: DLL Side-Loading

Hijack Execution Flow: Dylib Hijacking

Hijack Execution Flow: Executable Installer File Permissions Weakness

Hijack Execution Flow: LD_PRELOAD

Hijack Execution Flow: Path Interception by PATH Environment Variable

Hijack Execution Flow: Path Interception by Search Order Hijacking

Hijack Execution Flow: Path Interception by Unquoted Path

Hijack Execution Flow: Services File Permissions Weakness

Hijack Execution Flow: Services Registry Permissions Weakness

Hijack Execution Flow: COR_PROFILER

Topic Tags

Select the tags that apply to this CVE (Assessment added tags are disabled and cannot be removed)

What makes this of high-value to an attacker?

Vulnerable in default configuration

Unauthenticated

Observed in state-sponsored attacks

Observed in ransomware attacks

Gives privileged access

Easy to weaponize

Difficult to patch

Common in enterprise

CISA KEV Listed

What makes this of low-value to an attacker?

Vulnerable in uncommon configuration

Requires user interaction

Requires physical access

Requires elevated access

No useful access

Difficult to weaponize

Authenticated

Description

Improper invalidation for page table updates by a virtual guest operating system for multiple Intel® Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.

See More See Less

Ratings & Analysis
Vulnerability Details

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

6.5 Medium

Impact Score:

Exploitability Score:

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Attack Vector (AV):

Local

Attack Complexity (AC):

Low

Privileges Required (PR):

Low

User Interaction (UI):

None

Scope (S):

Changed

Confidentiality (C):

None

Integrity (I):

None

Availability (A):

High

General Information

Offensive Application

Unknown

Utility Class

Unknown

Ports

Unknown

Vulnerable Versions

2019.2 IPU – Intel(R) Processor Machine Check Error See provided reference

Prerequisites

Unknown

Discovered By

Unknown

PoC Author

Unknown

Metasploit Module

Unknown

Reporter

Unknown

Vendors

canonical,
debian,
f5,
fedoraproject,
intel,
opensuse,
oracle,
redhat

Products

big-ip access policy manager,
big-ip advanced firewall manager,
big-ip analytics,
big-ip application acceleration manager,
big-ip application security manager,
big-ip domain name system,
big-ip fraud protection service,
big-ip global traffic manager,
big-ip link controller,
big-ip local traffic manager,
big-ip policy enforcement manager,
big-iq centralized management,
big-iq centralized management 7.0.0,
celeron g1610 firmware -,
celeron g1610t firmware -,
celeron g1620 firmware -,
celeron g1620t firmware -,
celeron g1630 firmware -,
celeron g1820 firmware -,
celeron g1820t firmware -,
celeron g1820te firmware -,
celeron g1830 firmware -,
celeron g1840 firmware -,
celeron g1840t firmware -,
celeron g1850 firmware -,
celeron g3900 firmware -,
celeron g3900e firmware -,
celeron g3900t firmware -,
celeron g3900te firmware -,
celeron g3902e firmware -,
celeron g3920 firmware -,
celeron g3930 firmware -,
celeron g3930e firmware -,
celeron g3930t firmware -,
celeron g3930te firmware -,
celeron g3950 firmware -,
celeron g4900 firmware -,
celeron g4900t firmware -,
celeron g4920 firmware -,
celeron g4930 firmware -,
celeron g4930e firmware -,
celeron g4930t firmware -,
celeron g4932e firmware -,
celeron g4950 firmware -,
core i3-1005g1 firmware -,
core i3-10110u firmware -,
core i3-10110y firmware -,
core i3-5005u firmware -,
core i3-5010u firmware -,
core i3-5015u firmware -,
core i3-5020u firmware -,
core i3-5157u firmware -,
core i3-6100 firmware -,
core i3-6100h firmware -,
core i3-6100u firmware -,
core i3-6167u firmware -,
core i3-7100 firmware -,
core i3-7100h firmware -,
core i3-7100t firmware -,
core i3-7100u firmware -,
core i3-7167u firmware -,
core i3-7300 firmware -,
core i3-7300t firmware -,
core i3-7320 firmware -,
core i3-7350k firmware -,
core i3-8100 firmware -,
core i3-8100t firmware -,
core i3-8109u firmware -,
core i3-8130u firmware -,
core i3-8145u firmware -,
core i3-8300 firmware -,
core i3-8300t firmware -,
core i3-8350k firmware -,
core i3-9100 firmware -,
core i3-9100t firmware -,
core i3-9300 firmware -,
core i3-9300t firmware -,
core i3-9320 firmware -,
core i3-9350k firmware -,
core i5+8400 firmware -,
core i5+8500 firmware -,
core i5-10210u firmware -,
core i5-10210y firmware -,
core i5-10310y firmware -,
core i5-1035g1 firmware -,
core i5-1035g4 firmware -,
core i5-1035g7 firmware -,
core i5-5200u firmware -,
core i5-5250u firmware -,
core i5-5257u firmware -,
core i5-5287u firmware -,
core i5-5350h firmware -,
core i5-6200u firmware -,
core i5-6260u firmware -,
core i5-6267u firmware -,
core i5-6287u firmware -,
core i5-6300hq firmware -,
core i5-6350hq firmware -,
core i5-7200u firmware -,
core i5-7260u firmware -,
core i5-7267u firmware -,
core i5-7287u firmware -,
core i5-7300hq firmware -,
core i5-7360u firmware -,
core i5-7400 firmware -,
core i5-7400t firmware -,
core i5-7440hq firmware -,
core i5-7500 firmware -,
core i5-7500t firmware -,
core i5-7600 firmware -,
core i5-7600k firmware -,
core i5-7600t firmware -,
core i5-7y54 firmware -,
core i5-8200y firmware -,
core i5-8250u firmware -,
core i5-8259u firmware -,
core i5-8265u firmware -,
core i5-8269u firmware -,
core i5-8300h firmware -,
core i5-8305g firmware -,
core i5-8350u firmware -,
core i5-8400 firmware -,
core i5-8400b firmware -,
core i5-8400t firmware -,
core i5-8500b firmware -,
core i5-8700b firmware -,
core i5-9300h firmware -,
core i5-9400 firmware -,
core i5-9400h firmware -,
core i5-9400t firmware -,
core i5-9500 firmware -,
core i5-9500t firmware -,
core i5-9600 firmware -,
core i5-9600k firmware -,
core i5-9600t firmware -,
core i7+8700 firmware -,
core i7-10510u firmware -,
core i7-10510y firmware -,
core i7-1065g7 firmware -,
core i7-10710u firmware -,
core i7-5500u firmware -,
core i7-5550u firmware -,
core i7-5557u firmware -,
core i7-5700hq firmware -,
core i7-5750hq firmware -,
core i7-5775c firmware -,
core i7-5850hq firmware -,
core i7-5950hq firmware -,
core i7-6500u firmware -,
core i7-6560u firmware -,
core i7-6567u firmware -,
core i7-6700hq firmware -,
core i7-6770hq firmware -,
core i7-6820hk firmware -,
core i7-6870hq firmware -,
core i7-6970hq firmware -,
core i7-7500u firmware -,
core i7-7560u firmware -,
core i7-7567u firmware -,
core i7-7660u firmware -,
core i7-7700 firmware -,
core i7-7700hq firmware -,
core i7-7700k firmware -,
core i7-7700t firmware -,
core i7-7800x firmware -,
core i7-7820hk firmware -,
core i7-7820hq firmware -,
core i7-7820x firmware -,
core i7-7920hq firmware -,
core i7-8086k firmware -,
core i7-8500y firmware -,
core i7-8550u firmware -,
core i7-8559u firmware -,
core i7-8565u firmware -,
core i7-8650u firmware -,
core i7-8705g firmware -,
core i7-8706g firmware -,
core i7-8709g firmware -,
core i7-8750h firmware -,
core i7-8809g firmware -,
core i7-9700 firmware -,
core i7-9700k firmware -,
core i7-9700t firmware -,
core i7-9750h firmware -,
core i7-9850h firmware -,
core i9-10900x x-series firmware -,
core i9-10920x x-series firmware -,
core i9-10940x x-series firmware -,
core i9-10980xe firmware -,
core i9-7900x firmware -,
core i9-7920x firmware -,
core i9-7940x firmware -,
core i9-7960x firmware -,
core i9-7980xe firmware -,
core i9-9900x x-series firmware -,
core i9-9920x x-series firmware -,
core i9-9940x x-series firmware -,
core i9-9960x x-series firmware -,
core i9-9980xe firmware -,
core m-5y10 firmware -,
core m-5y10a firmware -,
core m-5y10c firmware -,
core m-5y31 firmware -,
core m-5y51 firmware -,
core m-5y70 firmware -,
core m-5y71 firmware -,
core m3-6y30 firmware -,
core m3-6y54 firmware -,
core m3-7y30 firmware -,
core m3-8100y firmware -,
debian linux 9.0,
enterprise linux server 7.0,
enterprise linux server aus 7.6,
enterprise linux server aus 7.7,
enterprise linux server eus 7.6,
enterprise linux server eus 7.7,
enterprise linux server eus 8.1,
enterprise linux server tus 7.6,
enterprise linux server tus 7.7,
enterprise manager 3.1.1,
fedora 30,
fedora 31,
leap 15.1,
openshift container platform 4.1,
openshift container platform 4.2,
pentium gold 4410y firmware -,
pentium gold 4415u firmware -,
pentium gold 4415y firmware -,
pentium gold 4417u firmware -,
pentium gold 4425y firmware -,
pentium gold 5405u firmware -,
pentium gold 6405u firmware -,
pentium gold g5400 firmware -,
pentium gold g5400t firmware -,
pentium gold g5420 firmware -,
pentium gold g5420t firmware -,
pentium gold g5500 firmware -,
pentium gold g5500t firmware -,
pentium gold g5600 firmware -,
pentium gold g5600t firmware -,
pentium gold g5620 firmware -,
solaris 11,
ubuntu linux 14.04,
xeon 3040 firmware -,
xeon 3050 firmware -,
xeon 3060 firmware -,
xeon 3065 firmware -,
xeon 3070 firmware -,
xeon 5030 firmware -,
xeon 5040 firmware -,
xeon 5050 firmware -,
xeon 5060 firmware -,
xeon 5063 firmware -,
xeon 5070 firmware -,
xeon 5080 firmware -,
xeon 5110 firmware -,
xeon 5120 firmware -,
xeon 5130 firmware -,
xeon 5140 firmware -,
xeon 5150 firmware -,
xeon 5160 firmware -,
xeon 7020 firmware -,
xeon 7030 firmware -,
xeon 7040 firmware -,
xeon 7041 firmware -,
xeon 7110m firmware -,
xeon 7110n firmware -,
xeon 7120m firmware -,
xeon 7120n firmware -,
xeon 7130m firmware -,
xeon 7130n firmware -,
xeon 7140m firmware -,
xeon 7140n firmware -,
xeon 7150n firmware -,
xeon bronze 3204 firmware -,
xeon d-1513n firmware -,
xeon d-1518 firmware -,
xeon d-1520 firmware -,
xeon d-1521 firmware -,
xeon d-1523n firmware -,
xeon d-1527 firmware -,
xeon d-1528 firmware -,
xeon d-1529 firmware -,
xeon d-1531 firmware -,
xeon d-1533n firmware -,
xeon d-1537 firmware -,
xeon d-1539 firmware -,
xeon d-1540 firmware -,
xeon d-1541 firmware -,
xeon d-1543n firmware -,
xeon d-1548 firmware -,
xeon d-1553n firmware -,
xeon d-1557 firmware -,
xeon d-1559 firmware -,
xeon d-1567 firmware -,
xeon d-1571 firmware -,
xeon d-1577 firmware -,
xeon d-1602 firmware -,
xeon d-1622 firmware -,
xeon d-1623n firmware -,
xeon d-1627 firmware -,
xeon d-1633n firmware -,
xeon d-1637 firmware -,
xeon d-1649n firmware -,
xeon d-1653n firmware -,
xeon d-2123it firmware -,
xeon d-2141i firmware -,
xeon d-2142it firmware -,
xeon d-2143it firmware -,
xeon d-2145nt firmware -,
xeon d-2146nt firmware -,
xeon d-2161i firmware -,
xeon d-2163it firmware -,
xeon d-2166nt firmware -,
xeon d-2173it firmware -,
xeon d-2177nt firmware -,
xeon d-2183it firmware -,
xeon d-2187nt firmware -,
xeon d-2191 firmware -,
xeon e-2104g firmware -,
xeon e-2124 firmware -,
xeon e-2124g firmware -,
xeon e-2126g firmware -,
xeon e-2134 firmware -,
xeon e-2136 firmware -,
xeon e-2144g firmware -,
xeon e-2146g firmware -,
xeon e-2174g firmware -,
xeon e-2176g firmware -,
xeon e-2186g firmware -,
xeon e-2224 firmware -,
xeon e-2224g firmware -,
xeon e-2226g firmware -,
xeon e-2234 firmware -,
xeon e-2236 firmware -,
xeon e-2244g firmware -,
xeon e-2246g firmware -,
xeon e-2274g firmware -,
xeon e-2276g firmware -,
xeon e-2278g firmware -,
xeon e-2286g firmware -,
xeon e-2288g firmware -,
xeon e3-1220 v3 firmware -,
xeon e3-1220 v5 firmware -,
xeon e3-1220 v6 firmware -,
xeon e3-1220l v3 firmware -,
xeon e3-1225 v3 firmware -,
xeon e3-1225 v5 firmware -,
xeon e3-1225 v6 firmware -,
xeon e3-1226 v3 firmware -,
xeon e3-1230 v5 firmware -,
xeon e3-1230 v6 firmware -,
xeon e3-1230l v3 firmware -,
xeon e3-1231 v3 firmware -,
xeon e3-1235l v5 firmware -,
xeon e3-1240 v5 firmware -,
xeon e3-1240 v6 firmware -,
xeon e3-1240l v3 firmware -,
xeon e3-1240l v5 firmware -,
xeon e3-1241 v3 firmware -,
xeon e3-1245 v5 firmware -,
xeon e3-1245 v6 firmware -,
xeon e3-1246 v3 firmware -,
xeon e3-1260l v5 firmware -,
xeon e3-1265l v3 firmware -,
xeon e3-1265l v4 firmware -,
xeon e3-1268l v5 firmware -,
xeon e3-1270 v5 firmware -,
xeon e3-1270 v6 firmware -,
xeon e3-1271 v3 firmware -,
xeon e3-1275 v3 firmware -,
xeon e3-1275 v5 firmware -,
xeon e3-1275 v6 firmware -,
xeon e3-1276 v3 firmware -,
xeon e3-1280 v5 firmware -,
xeon e3-1280 v6 firmware -,
xeon e3-1281 v3 firmware -,
xeon e3-1285 v4 firmware -,
xeon e3-1285l v4 firmware -,
xeon e3-1505m v5 firmware -,
xeon e3-1505m v6 firmware -,
xeon e3-1515m v5 firmware -,
xeon e3-1535m v5 firmware -,
xeon e3-1535m v6 firmware -,
xeon e3-1545m v5 firmware -,
xeon e3-1558l v5 firmware -,
xeon e3-1565l v5 firmware -,
xeon e3-1575m v5 firmware -,
xeon e3-1585 v5 firmware -,
xeon e3-1585l v5 firmware -,
xeon e3110 firmware -,
xeon e3120 firmware -,
xeon e5-1620 v2 firmware -,
xeon e5-1620 v3 firmware -,
xeon e5-1620 v4 firmware -,
xeon e5-1630 v3 firmware -,
xeon e5-1630 v4 firmware -,
xeon e5-1650 v2 firmware -,
xeon e5-1650 v3 firmware -,
xeon e5-1650 v4 firmware -,
xeon e5-1660 v2 firmware -,
xeon e5-1660 v3 firmware -,
xeon e5-1660 v4 firmware -,
xeon e5-1680 v3 firmware -,
xeon e5-1680 v4 firmware -,
xeon e5-2403 v2 firmware -,
xeon e5-2407 v2 firmware -,
xeon e5-2420 v2 firmware -,
xeon e5-2430 v2 firmware -,
xeon e5-2430l v2 firmware -,
xeon e5-2440 v2 firmware -,
xeon e5-2450 v2 firmware -,
xeon e5-2450l v2 firmware -,
xeon e5-2470 v2 firmware -,
xeon e5-2603 v2 firmware -,
xeon e5-2603 v3 firmware -,
xeon e5-2603 v4 firmware -,
xeon e5-2608l v4 firmware -,
xeon e5-2609 v2 firmware -,
xeon e5-2609 v4 firmware -,
xeon e5-2618l v4 firmware -,
xeon e5-2620 v2 firmware -,
xeon e5-2620 v3 firmware -,
xeon e5-2620 v4 firmware -,
xeon e5-2623 v3 firmware -,
xeon e5-2623 v4 firmware -,
xeon e5-2628l v4 firmware -,
xeon e5-2630 v2 firmware -,
xeon e5-2630 v3 firmware -,
xeon e5-2630 v4 firmware -,
xeon e5-2630l v2 firmware -,
xeon e5-2630l v3 firmware -,
xeon e5-2630l v4 firmware -,
xeon e5-2637 v2 firmware -,
xeon e5-2637 v3 firmware -,
xeon e5-2637 v4 firmware -,
xeon e5-2640 v2 firmware -,
xeon e5-2640 v3 firmware -,
xeon e5-2640 v4 firmware -,
xeon e5-2643 v2 firmware -,
xeon e5-2643 v3 firmware -,
xeon e5-2643 v4 firmware -,
xeon e5-2648l v4 firmware -,
xeon e5-2650 v2 firmware -,
xeon e5-2650 v3 firmware -,
xeon e5-2650 v4 firmware -,
xeon e5-2650l v2 firmware -,
xeon e5-2650l v3 firmware -,
xeon e5-2650l v4 firmware -,
xeon e5-2658 v4 firmware -,
xeon e5-2660 v2 firmware -,
xeon e5-2660 v3 firmware -,
xeon e5-2660 v4 firmware -,
xeon e5-2667 v2 firmware -,
xeon e5-2667 v3 firmware -,
xeon e5-2667 v4 firmware -,
xeon e5-2670 v2 firmware -,
xeon e5-2670 v3 firmware -,
xeon e5-2680 v2 firmware -,
xeon e5-2680 v3 firmware -,
xeon e5-2680 v4 firmware -,
xeon e5-2683 v3 firmware -,
xeon e5-2683 v4 firmware -,
xeon e5-2687w v2 firmware -,
xeon e5-2687w v3 firmware -,
xeon e5-2687w v4 firmware -,
xeon e5-2690 v2 firmware -,
xeon e5-2690 v3 firmware -,
xeon e5-2690 v4 firmware -,
xeon e5-2695 v2 firmware -,
xeon e5-2695 v3 firmware -,
xeon e5-2695 v4 firmware -,
xeon e5-2697 v2 firmware -,
xeon e5-2697 v3 firmware -,
xeon e5-2697 v4 firmware -,
xeon e5-2697a v4 firmware -,
xeon e5-2698 v3 firmware -,
xeon e5-2698 v4 firmware -,
xeon e5-2699 v3 firmware -,
xeon e5-2699 v4 firmware -,
xeon e5-2699a v4 firmware -,
xeon e5-4603 v2 firmware -,
xeon e5-4607 v2 firmware -,
xeon e5-4610 v2 firmware -,
xeon e5-4610 v3 firmware -,
xeon e5-4610a v4 firmware -,
xeon e5-4620 v2 firmware -,
xeon e5-4620 v3 firmware -,
xeon e5-4620 v4 firmware -,
xeon e5-4627 v2 firmware -,
xeon e5-4627 v3 firmware -,
xeon e5-4627 v4 firmware -,
xeon e5-4628l v4 firmware -,
xeon e5-4640 v2 firmware -,
xeon e5-4640 v3 firmware -,
xeon e5-4640 v4 firmware -,
xeon e5-4650 v2 firmware -,
xeon e5-4650 v3 firmware -,
xeon e5-4650 v4 firmware -,
xeon e5-4655 v3 firmware -,
xeon e5-4655 v4 firmware -,
xeon e5-4657l v2 firmware -,
xeon e5-4660 v3 firmware -,
xeon e5-4660 v4 firmware -,
xeon e5-4667 v3 firmware -,
xeon e5-4667 v4 firmware -,
xeon e5-4669 v3 firmware -,
xeon e5-4669 v4 firmware -,
xeon e5205 firmware -,
xeon e5220 firmware -,
xeon e5240 firmware -,
xeon e5310 firmware -,
xeon e5320 firmware -,
xeon e5335 firmware -,
xeon e5345 firmware -,
xeon e5405 firmware -,
xeon e5410 firmware -,
xeon e5420 firmware -,
xeon e5430 firmware -,
xeon e5440 firmware -,
xeon e5450 firmware -,
xeon e5462 firmware -,
xeon e5472 firmware -,
xeon e5502 firmware -,
xeon e5503 firmware -,
xeon e5504 firmware -,
xeon e5506 firmware -,
xeon e5507 firmware -,
xeon e5520 firmware -,
xeon e5530 firmware -,
xeon e5540 firmware -,
xeon e5603 firmware -,
xeon e5606 firmware -,
xeon e5607 firmware -,
xeon e5620 firmware -,
xeon e5630 firmware -,
xeon e5640 firmware -,
xeon e5645 firmware -,
xeon e5649 firmware -,
xeon e6510 firmware -,
xeon e6540 firmware -,
xeon e7-2850 v2 firmware -,
xeon e7-2870 v2 firmware -,
xeon e7-2880 v2 firmware -,
xeon e7-2890 v2 firmware -,
xeon e7-4809 v2 firmware -,
xeon e7-4809 v3 firmware -,
xeon e7-4809 v4 firmware -,
xeon e7-4820 v2 firmware -,
xeon e7-4820 v3 firmware -,
xeon e7-4820 v4 firmware -,
xeon e7-4830 v2 firmware -,
xeon e7-4830 v3 firmware -,
xeon e7-4830 v4 firmware -,
xeon e7-4850 v2 firmware -,
xeon e7-4850 v3 firmware -,
xeon e7-4850 v4 firmware -,
xeon e7-4860 v2 firmware -,
xeon e7-4870 v2 firmware -,
xeon e7-4880 v2 firmware -,
xeon e7-4890 v2 firmware -,
xeon e7-8850 v2 firmware -,
xeon e7-8855 v4 firmware -,
xeon e7-8857 v2 firmware -,
xeon e7-8860 v3 firmware -,
xeon e7-8860 v4 firmware -,
xeon e7-8867 v3 firmware -,
xeon e7-8867 v4 firmware -,
xeon e7-8870 v2 firmware -,
xeon e7-8870 v3 firmware -,
xeon e7-8870 v4 firmware -,
xeon e7-8880 v2 firmware -,
xeon e7-8880 v3 firmware -,
xeon e7-8880 v4 firmware -,
xeon e7-8880l v2 firmware -,
xeon e7-8880l v3 firmware -,
xeon e7-8890 v2 firmware -,
xeon e7-8890 v3 firmware -,
xeon e7-8890 v4 firmware -,
xeon e7-8891 v2 firmware -,
xeon e7-8891 v3 firmware -,
xeon e7-8891 v4 firmware -,
xeon e7-8893 v2 firmware -,
xeon e7-8893 v3 firmware -,
xeon e7-8893 v4 firmware -,
xeon e7-8895 v2 firmware -,
xeon e7210 firmware -,
xeon e7220 firmware -,
xeon e7310 firmware -,
xeon e7320 firmware -,
xeon e7330 firmware -,
xeon e7340 firmware -,
xeon e7420 firmware -,
xeon e7430 firmware -,
xeon e7440 firmware -,
xeon e7450 firmware -,
xeon e7520 firmware -,
xeon e7530 firmware -,
xeon e7540 firmware -,
xeon ec3539 firmware -,
xeon ec5509 firmware -,
xeon ec5539 firmware -,
xeon ec5549 firmware -,
xeon gold 5215 firmware -,
xeon gold 5215l firmware -,
xeon gold 5215m firmware -,
xeon gold 5217 firmware -,
xeon gold 5218 firmware -,
xeon gold 5218b firmware -,
xeon gold 5218n firmware -,
xeon gold 5218t firmware -,
xeon gold 5220 firmware -,
xeon gold 5220s firmware -,
xeon gold 5220t firmware -,
xeon gold 5222 firmware -,
xeon gold 6222v firmware -,
xeon gold 6226 firmware -,
xeon gold 6230 firmware -,
xeon gold 6230n firmware -,
xeon gold 6230t firmware -,
xeon gold 6234 firmware -,
xeon gold 6238 firmware -,
xeon gold 6238l firmware -,
xeon gold 6238m firmware -,
xeon gold 6238t firmware -,
xeon gold 6240 firmware -,
xeon gold 6240l firmware -,
xeon gold 6240m firmware -,
xeon gold 6240y firmware -,
xeon gold 6242 firmware -,
xeon gold 6244 firmware -,
xeon gold 6246 firmware -,
xeon gold 6248 firmware -,
xeon gold 6252 firmware -,
xeon gold 6252n firmware -,
xeon gold 6254 firmware -,
xeon gold 6262v firmware -,
xeon l3014 firmware -,
xeon l3110 firmware -,
xeon l3360 firmware -,
xeon l3406 firmware -,
xeon l3426 firmware -,
xeon l5215 firmware -,
xeon l5238 firmware -,
xeon l5240 firmware -,
xeon l5310 firmware -,
xeon l5318 firmware -,
xeon l5320 firmware -,
xeon l5335 firmware -,
xeon l5408 firmware -,
xeon l5410 firmware -,
xeon l5420 firmware -,
xeon l5430 firmware -,
xeon l5506 firmware -,
xeon l5508 firmware -,
xeon l5518 firmware -,
xeon l5520 firmware -,
xeon l5530 firmware -,
xeon l5609 firmware -,
xeon l5618 firmware -,
xeon l5630 firmware -,
xeon l5638 firmware -,
xeon l5640 firmware -,
xeon l7345 firmware -,
xeon l7445 firmware -,
xeon l7455 firmware -,
xeon l7545 firmware -,
xeon l7555 firmware -,
xeon lc3518 firmware -,
xeon lc3528 firmware -,
xeon lc5518 firmware -,
xeon lc5528 firmware -,
xeon lv 5113 firmware -,
xeon lv 5128 firmware -,
xeon lv 5133 firmware -,
xeon lv 5138 firmware -,
xeon lv 5148 firmware -,
xeon platinum 8253 firmware -,
xeon platinum 8256 firmware -,
xeon platinum 8260 firmware -,
xeon platinum 8260l firmware -,
xeon platinum 8260m firmware -,
xeon platinum 8260y firmware -,
xeon platinum 8268 firmware -,
xeon platinum 8270 firmware -,
xeon platinum 8276 firmware -,
xeon platinum 8276l firmware -,
xeon platinum 8276m firmware -,
xeon platinum 8280 firmware -,
xeon platinum 8280l firmware -,
xeon platinum 8280m firmware -,
xeon platinum 9221 firmware -,
xeon platinum 9222 firmware -,
xeon platinum 9242 firmware -,
xeon platinum 9282 firmware -,
xeon silver 4208 firmware -,
xeon silver 4209t firmware -,
xeon silver 4210 firmware -,
xeon silver 4214 firmware -,
xeon silver 4214y firmware -,
xeon silver 4215 firmware -,
xeon silver 4216 firmware -,
xeon w-2123 firmware -,
xeon w-2125 firmware -,
xeon w-2133 firmware -,
xeon w-2135 firmware -,
xeon w-2145 firmware -,
xeon w-2155 firmware -,
xeon w-2175 firmware -,
xeon w-2195 firmware -,
xeon w-2223 firmware -,
xeon w-2225 firmware -,
xeon w-2235 firmware -,
xeon w-2245 firmware -,
xeon w-2255 firmware -,
xeon w-2265 firmware -,
xeon w-2275 firmware -,
xeon w-2295 firmware -,
xeon w-3175x firmware -,
xeon w-3223 firmware -,
xeon w-3225 firmware -,
xeon w-3245 firmware -,
xeon w-3245m firmware -,
xeon w-3265 firmware -,
xeon w-3265m firmware -,
xeon w-3275 firmware -,
xeon w-3275m firmware -,
xeon w3520 firmware -,
xeon w3530 firmware -,
xeon w3540 firmware -,
xeon w3550 firmware -,
xeon w3565 firmware -,
xeon w3570 firmware -,
xeon w3580 firmware -,
xeon w3670 firmware -,
xeon w3680 firmware -,
xeon w3690 firmware -,
xeon w5580 firmware -,
xeon w5590 firmware -,
xeon x3210 firmware -,
xeon x3220 firmware -,
xeon x3230 firmware -,
xeon x3320 firmware -,
xeon x3330 firmware -,
xeon x3350 firmware -,
xeon x3360 firmware -,
xeon x3370 firmware -,
xeon x3380 firmware -,
xeon x3430 firmware -,
xeon x3440 firmware -,
xeon x3450 firmware -,
xeon x3460 firmware -,
xeon x3470 firmware -,
xeon x3480 firmware -,
xeon x5260 firmware -,
xeon x5270 firmware -,
xeon x5272 firmware -,
xeon x5355 firmware -,
xeon x5365 firmware -,
xeon x5450 firmware -,
xeon x5460 firmware -,
xeon x5470 firmware -,
xeon x5472 firmware -,
xeon x5482 firmware -,
xeon x5492 firmware -,
xeon x5550 firmware -,
xeon x5560 firmware -,
xeon x5570 firmware -,
xeon x5647 firmware -,
xeon x5650 firmware -,
xeon x5660 firmware -,
xeon x5667 firmware -,
xeon x5670 firmware -,
xeon x5672 firmware -,
xeon x5675 firmware -,
xeon x5677 firmware -,
xeon x5680 firmware -,
xeon x5687 firmware -,
xeon x5690 firmware -,
xeon x6550 firmware -,
xeon x7350 firmware -,
xeon x7460 firmware -,
xeon x7542 firmware -,
xeon x7550 firmware -,
xeon x7560 firmware -

References

Additional Info

Authenticated

Unknown

Exploitable

Unknown

Reliability

Unknown

Stability

Unknown

Available Mitigations

Unknown

Shelf Life

Unknown

Userbase/Installbase

Unknown

Patch Effectiveness

Unknown

Rapid7

Technical Analysis

Report as Emergent Threat Response

Please provide the link to the ETR blog if available.

Add a reference URL (optional):

Report as Zero-day Exploit

Please provide the link to the zero-day exploit reference.

Note: The source link you provide will create a new misc reference if it doesn't already exist.

Add a reference URL (optional):

Report as Exploited in the Wild

AttackerKB users want to know this is information they can trust.
Help the community by indicating the source(s) of your knowledge:

Vendor Advisory

Add a reference URL (required):

Please provide a link to the Vendor Advisory.
Government or Industry Alert

Add a reference URL (required):

Please provide a link to the Government or Industry Alert.
Threat Feed

Add a reference URL (required):

Please provide a link to the Threat Feed.
News Article or Blog

Add a reference URL (required):

Please provide a link to the News Reference.
Exploitation personally observed in an environment (client, customer, employer, or personal environment)

Add a reference URL (required):

Please provide a link or create an assessment as evidence to support your personal observation claim.
Other:

Please explain the source of your report.

Add a reference URL (required):

Please provide a link or create an assessment as evidence of the source of your report.

CVE ID

AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:

CVE ID:

Unknown

CVE-2018-12207

Unknown

Unknown

None

Low

Local

CVE-2018-12207

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Advisory

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification