CVE-2019-0102
HIGHIntel(R) Data Center Manager SDK <5.0.2 - Privilege Escalation
Title source: llmDescription
Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
References (4)
Core 4
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/107069
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html
Scores
CVSS v3
8.8
EPSS
0.0241
EPSS Percentile
85.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-384
Status
published
Products (1)
intel/data_center_manager
< 5.0.2
Published
Feb 18, 2019
Tracked Since
Feb 18, 2026