Intel asks the user’s to uninstall the Intel Remote Keyboard for Android and iOS mobile device after researchers disclosed a critical security bug that allows attackers to inject keystrokes and to escalate privileges.
The Intel Remote Keyboard enables you to easily integrate your smartphone or tablet with a keyboard and mouse, improving your entertainment experience.
Also Read Intel Expands Bug Bounty Program Rewards To $250,000 for Meltdown and Spectre Like Vulnerabilities
CVE-2018-3641 – Privilege escalation bug that allows an attacker to inject keystrokes as a local user
CVE-2018-3645 – Privilege escalation bug that allows a local attacker to inject keystrokes into another remote keyboard session.
CVE-2018-3638 – Privilege escalation bug allows an authorized local attacker to execute arbitrary code as a privileged user.
These bugs affected all the versions of the Intel Remote Keyboard including the last version 1.14 and the severity score of the bug is high. The keyboard app has more than 500,000 installations and it was last updated on June 5, 2017.
