Lucene search

IntelCVE-2019-0112

HistoryFeb 18, 2019 - 5:29 p.m.

CVE-2019-0112

2019-02-1817:29:00

intel

web.nvd.nist.gov

cve-2019-0112

intel

data center manager sdk

crypto routines

denial of service

security vulnerability

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

4.4

Confidence

High

EPSS

0.001

Percentile

27.3%

JSON

Improper flow control in crypto routines for Intel® Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable a denial of service via local access.

Affected configurations

Nvd

Node

inteldata_center_managerRange<5.0.2

VendorProductVersionCPE
inteldata_center_manager*cpe:2.3:a:intel:data_center_manager:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
intel	data_center_manager	*	cpe:2.3:a:intel:data_center_manager::::::::

References

www.securityfocus.com/bid/107064

ics-cert.us-cert.gov/advisories/ICSA-19-050-01

www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

4.4

Confidence

High

EPSS

0.001

Percentile

27.3%

JSON

Related for CVE-2019-0112