Privilege Escalation in Intel Data Center Manager SDK by Intel
CVE-2018-3679

9.6CRITICAL

Key Information:

Vendor: Intel
Status: Intel(r) Data Center Manager Sdk
Vendor: CVE Published:; 12 September 2018

Summary

A privilege escalation vulnerability exists within the Reference UI of Intel Data Center Manager SDK version 5.0 and earlier. This flaw may enable an unauthorized remote unauthenticated user to execute code with administrator privileges, potentially compromising system integrity and security. Exploiting this vulnerability could allow attackers to gain control over essential operations within the data center management environment, making it crucial for organizations to apply the necessary patches and secure configurations to mitigate risks.

Affected Version(s)

Intel(R) Data Center Manager SDK Versions 5.0 and before.

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.6

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Sep 12, 2018
Vulnerability Reserved
Dec 28, 2017