{"dataType": "CVE_RECORD", "containers": {"cna": {"metrics": [{"format": "CVSS", "cvssV2_0": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"cpes": ["cpe:2.3:a:intel:ethernet_diagnostics_driver_iqvw32.sys:1.03.0.7:*:*:*:*:*:*:*"], "vendor": "intel", "product": "ethernet_diagnostics_driver_iqvw32.sys", "versions": [{"status": "affected", "version": "1.03.0.7"}], "platforms": ["cpe:2.3:o:microsoft:*:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:intel:ethernet_diagnostics_driver_iqvw64.sys:1.03.0.7:*:*:*:*:*:*:*"], "vendor": "intel", "product": "ethernet_diagnostics_driver_iqvw64.sys", "versions": [{"status": "affected", "version": "1.03.0.7"}], "platforms": ["cpe:2.3:o:microsoft:*:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected"}], "references": [{"url": "http://www.securityfocus.com/bid/79623", "tags": ["broken-link", "third-party-advisory", "vdb-entry"]}, {"url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00051&languageid=en-fr", "tags": ["patch", "vendor-advisory"]}, {"url": "http://packetstormsecurity.com/files/130854/Intel-Network-Adapter-Diagnostic-Driver-IOCTL-DoS.html", "tags": ["third-party-advisory", "vdb-entry"]}, {"url": "https://www.exploit-db.com/exploits/36392/", "tags": ["third-party-advisory", "vdb-entry"]}, {"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-2291", "tags": ["x_us-government-resource"]}], "descriptions": [{"lang": "en", "value": "(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F, or (d) 0x80862007 IOCTL call."}, {"lang": "es", "value": "(1) IQVW32.sys en versiones anteriores a la 1.3.1.0 y (2) IQVW64.sys en versiones anteriores a la 1.3.1.0 en el controlador de diagnósticos de Intel Ethernet para Windows permite que usuarios locales provoquen una denegación de servicio o, posiblemente, ejecuten código arbitrario con privilegios kernel mediante una llamada IOCTL (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F o (d) 0x80862007 manipulada."}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-20", "description": "CWE-20"}]}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000003", "shortName": "nvd", "dateUpdated": "2017-08-09T18:29:00Z", "x_subShortName": "nvd"}}}, "cveMetadata": {"cveId": "CVE-2015-2291", "state": "PUBLISHED", "dateUpdated": "2026-04-22T13:48:27Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2017-08-09T18:29:00Z", "assignerShortName": "mitre"}, "dataVersion": "5.0"}