Privilege Escalation in Intel Data Center Manager SDK by Intel
CVE-2018-3679
9.6CRITICAL
Key Information:
- Vendor
- Intel
- Vendor
- CVE Published:
- 12 September 2018
Summary
A privilege escalation vulnerability exists within the Reference UI of Intel Data Center Manager SDK version 5.0 and earlier. This flaw may enable an unauthorized remote unauthenticated user to execute code with administrator privileges, potentially compromising system integrity and security. Exploiting this vulnerability could allow attackers to gain control over essential operations within the data center management environment, making it crucial for organizations to apply the necessary patches and secure configurations to mitigate risks.
Affected Version(s)
Intel(R) Data Center Manager SDK Versions 5.0 and before.
References
CVSS V3.1
Score:
9.6
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved