5 matches found
CVE-2022-21225
Improper neutralization in the IntelR Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable escalation of privilege via adjacent access...
Intel Data Center Manager 4.1 SQL Injection Vulnerability
Intel Data Center Manager's endpoint at "/DcmConsole/DataAccessServlet?action=getRoomRackData" is vulnerable to an authenticated, blind SQL injection attack when user-supplied input to the HTTP POST parameter "dataName" is processed by the web application. Versions 4.1 and below are affected. 1...
CVE-2022-21225
Improper neutralization in the IntelR Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable escalation of privilege via adjacent access...
CVE-2022-21225
Intel Data Center Manager (DCM) before version 4.1 is affected by CVE-2022-21225 due to improper neutralization, allowing an authenticated user with adjacent access to escalate privileges. CVSS v3.1 base score 8.0 (HIGH); attack vector: Adjacent; privileges required: Low; user interaction: None; ...
CVE-2022-21225
Improper neutralization in the IntelR Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable escalation of privilege via adjacent access...