Insufficient File Permissions in Intel Data Center Manager SDK
CVE-2019-0105

7.8HIGH

Key Information:

Vendor

Intel
Status
Data Center Manager
Vendor
CVE Published:
18 February 2019

What is CVE-2019-0105?

An insufficiency in file permission checks within the install routine of Intel Data Center Manager SDK versions before 5.0.2 may permit an authenticated user to escalate privileges through local access. This vulnerability opens the door for potential unauthorized actions that could compromise system integrity.

References

https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
x_refsource_MISC
https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/107069
vdb-entryx_refsource_BID

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.