CVE-2019-0108

Published: Feb 18, 2019Modified: Nov 21, 2024

5.5

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable disclosure of information via local access.

Affected (1)

Products: Intel: Data Center Manager

Intel

1 product

Data Center Manager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Intel Data Center Manager	Before 5.0.2

Related CWEs

CWE-732

Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

References (6)

http://www.securityfocus.com/bid/107075

Source: secure@intel.com

Third Party AdvisoryVDB Entry

https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01

Source: secure@intel.com

Third Party AdvisoryUS Government Resource

https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html

Source: secure@intel.com

Vendor Advisory

http://www.securityfocus.com/bid/107075

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.