CVE-2019-18279 - In Phoenix SCT WinFlash 1.1.12.0 through 1.5.74.0, the included drivers could be used by a malicious

CVE-2019-18279

Summary

In Phoenix SCT WinFlash 1.1.12.0 through 1.5.74.0, the included drivers could be used by a malicious Windows application to gain elevated privileges. Adverse impacts are limited to the Windows environment and there is no known direct impact to the UEFI firmware. This was fixed in late June 2019.

References

Vulnerable Configurations

cpe:2.3:o:phoenix:securecore_technology:1.1.12.0:*:*:*:*:*:*:*
cpe:2.3:o:phoenix:securecore_technology:1.1.12.0:*:*:*:*:*:*:*
cpe:2.3:o:phoenix:securecore_technology:1.5.74.0:*:*:*:*:*:*:*
cpe:2.3:o:phoenix:securecore_technology:1.5.74.0:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 15-10-2024 - 19:35)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

refmap via4

confirm	https://www.phoenix.com/content/uploads/Security-Newsletter-September-2019.pdf
misc	https://eclypsium.com/2019/08/10/screwed-drivers-signed-sealed-delivered/ https://eclypsium.com/wp-content/uploads/2019/08/EXTERNAL-Get-off-the-kernel-if-you-cant-drive-DEFCON27.pdf

Last major update

15-10-2024 - 19:35

Published

13-11-2019 - 18:15

Last modified

15-10-2024 - 19:35