Improper Data Sanitization in Intel SPS Products
CVE-2019-0089
6.7MEDIUM
Key Information:
- Vendor
Intel
- Vendor
- CVE Published:
- 17 May 2019
What is CVE-2019-0089?
An improper data sanitization vulnerability exists in a subsystem of Intel SPS products, which may allow an attacker with local access and sufficient privileges to escalate their privileges and potentially execute unauthorized commands. This issue could expose systems to further security risks, as users with elevated privileges may gain modifications to sensitive configurations and data.
Affected Version(s)
Intel(R) Server Platform Services (SPS) Versions before SPS_E5_04.00.04.381.0, SPS_E3_04.01.04.054.0, SPS_SoC-A_04.00.04.181.0, and SPS_SoC-X_04.00.04.086.0.