ID CVE-2019-0105
Summary Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated user to potentially enable escalation of privilege via local access.
References
Vulnerable Configurations
  • cpe:2.3:a:intel:data_center_manager:*:*:*:*:*:*:*:*
    cpe:2.3:a:intel:data_center_manager:*:*:*:*:*:*:*:*
CVSS
Base: 4.6 (as of 24-08-2020 - 17:37)
Impact:
Exploitability:
CWE CWE-863
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 107069
confirm https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html
misc https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
Last major update 24-08-2020 - 17:37
Published 18-02-2019 - 17:29
Last modified 24-08-2020 - 17:37
Back to Top