Insufficient Password Protection in Open CIT Attestation Database by Intel
CVE-2019-0183
3.3LOW
Key Information:
- Vendor
- Intel
- Vendor
- CVE Published:
- 13 June 2019
Summary
The vulnerability relates to inadequate password protection in the attestation database of Open CIT. This issue may allow an authenticated user to exploit the system, potentially leading to unauthorized access and disclosure of sensitive information through local access.
Affected Version(s)
Open Cloud Integrity Technology and OpenAttestation All versions of Open CIT and OpenAttestation.
References
CVSS V3.1
Score:
3.3
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved