Insufficient File Protection in Intel Data Center Manager SDK
CVE-2019-0103

5.5MEDIUM

Key Information:

Vendor
Intel
Status
Data Center Manager
Vendor
CVE Published:
18 February 2019

Summary

The Intel Data Center Manager SDK prior to version 5.0.2 contains a weakness in its installation routine that could allow an authenticated user to potentially gain unauthorized access to sensitive information through local access. This vulnerability highlights the importance of robust file protection measures during software installation to prevent data exposure.

References

http://www.securityfocus.com/bid/107074
vdb-entryx_refsource_BID
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
x_refsource_MISC
https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_CONFIRM

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.