Improper Folder Permissions in Intel Data Center Manager SDK
CVE-2019-0109

7.8HIGH

Key Information:

Vendor

Intel
Status
Data Center Manager
Vendor
CVE Published:
18 February 2019

What is CVE-2019-0109?

An improper folder permissions issue in Intel Data Center Manager SDK prior to version 5.0.2 permits an authenticated user to exploit the vulnerability, potentially allowing for escalation of privilege through local access. This could lead to unauthorized actions or access to sensitive data, underscoring the importance of maintaining strict access controls and regularly updating software to mitigate such risks.

References

https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
x_refsource_MISC
https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/107069
vdb-entryx_refsource_BID

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.