CVE-2019-0105
HIGHIntel Data Center Manager < 5.0.2 - Authenticated Privilege Escalation via Insufficient File Permissions
Title source: llmDescription
Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated user to potentially enable escalation of privilege via local access.
References (3)
Core 3
Core References
Mitigation, Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/107069
Scores
CVSS v3
7.8
EPSS
0.0011
EPSS Percentile
29.0%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-863
Status
published
Products (1)
intel/data_center_manager
< 5.0.2
Published
Feb 18, 2019
Tracked Since
Feb 18, 2026