29 matches found
CVE-2019-0105
CVE-2019-0105 affects IntelData Center Manager SDK prior to version 5.0.2. The vulnerability is caused by insufficient file permissions checking in the install routine, which could allow an authenticated user to escalate privileges via local access. The issue is documented across multiple sources...
CVE-2019-0103
The CVE-2019-0103 issue affects Intel Data Center Manager SDK prior to 5.0.2. It stems from insufficient file protection in the install routine, enabling an authenticated local attacker to disclose information. Affected product: Intel Data Center Manager SDK (pre-5.0.2). Impact is information dis...
CVE-2023-31273
CVE-2023-31273 affects Intel® Data Center Manager software before version 5.2. The issue is a protection mechanism failure that could allow an unauthenticated, network-connected attacker to escalate privileges. The advisory cites a CVSS v3.1 base score of 10.0 (critical) with network access and n...
CVE-2019-0108
Intel Data Center Manager SDK before version 5.0.2 is affected by CVE-2019-0108: a local information-disclosure flaw due to improper file permissions that could be exploited by an authenticated user. Affected product: Intel Data Center Manager SDK. Impact per CVSSv3: low confidentiality impact (C...
CVE-2019-0110
CVE-2019-0110 affects Intel Data Center Manager SDK prior to version 5.0.2. The vulnerability is insufficient key management that may allow an authenticated user to cause information disclosure via local access. The CNVD/VCVE lists the issue as a local-access information disclosure with a CVSS v3...
CVE-2019-0111
The CVE-2019-0111 issue affects Intel® Data Center Manager SDK prior to version 5.0.2. According to connected sources (ICSA-19-050-01 and Intel advisory INTEL-SA-00215), it is a local information disclosure vulnerability caused by improper file permissions in the SDK’s install/login paths, exploi...
CVE-2019-0102
CVE-2019-0102 affects Intel Data Center Manager SDK before version 5.0.2. The flaw is insufficient session authentication in the web server, allowing an unauthenticated user to potentially escalate privileges via network access. CVSS v3 base score 8.8 (vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H...
CVE-2019-0107
The CVE-2019-0107 entry relates to the Intel® Data Center Manager SDK prior to version 5.0.2. The documented flaw is Insufficient user prompt in the install routine, which may allow a privileged user to escalate privileges via local access. Affected component: Intel Data Center Manager SDK instal...
CVE-2019-0112
Intel Data Center Manager SDK (before 5.0.2) is affected by CVE-2019-0112 due to improper flow control in crypto routines. A privileged local attacker could trigger a denial of service. The issue affects the Intel DCM SDK prior to 5.0.2; remediation is to upgrade to version 5.0.2 or apply Intel a...
CVE-2019-0104
CVE-2019-0104 affects Intel Data Center Manager SDK prior to 5.0.2. The issue is insufficient file protection in the uninstall routine, potentially enabling information disclosure via local access by an authenticated user. Reported under Intel advisory INTEL-SA-00215 and corroborated by multiple ...
CVE-2019-0109
Intel Data Center Manager SDK prior to version 5.0.2 is affected by CVE-2019-0109, described as improper folder permissions that may allow an authenticated user to escalate privileges via local access. The vulnerability is listed with CVSS v3 base score 7.8 (LOCAL, LOW ATTACK). Affected product: ...
CVE-2019-0106
The CVE-2019-0106 issue affects Intel Data Center Manager SDK prior to version 5.0.2. The root cause is insufficient run protection in the install routine, which may let a privileged local user escalate privileges. The vulnerability is documented across multiple sources (NVD/NVD CNVD, CVE listing...
CVE-2022-21225
Intel Data Center Manager (DCM) before version 4.1 is affected by CVE-2022-21225 due to improper neutralization, allowing an authenticated user with adjacent access to escalate privileges. CVSS v3.1 base score 8.0 (HIGH); attack vector: Adjacent; privileges required: Low; user interaction: None; ...
CVE-2020-12345
CVE-2020-12345 affects Intel Data Center Manager Console before 3.6.2. The root cause is improper permissions in the installer, potentially allowing an authenticated user to escalate privileges via local access. Impact is local privilege escalation with high confidentiality/integrity/availability...
CVE-2022-23403
Intel Data Center Manager prior to version 4.1 is affected by CVE-2022-23403 due to improper input validation, potentially enabling a denial-of-service condition via local access for authenticated users. Public details from Red Hat and Intel advisories confirm the affected software range and the ...
CVE-2022-24378
CVE-2022-24378 affects Intel® Data Center Manager software prior to version 4.1. The issue is an improper initialization in the managed component that may allow an authenticated user to cause a denial of service via local access. Consequences are limited to DoS as described in the sources; no oth...
CVE-2022-33942
CVE-2022-33942 describes a protection-mechanism failure in Intel® Data Center Manager (DCM) software prior to version 5.0 that may allow an unauthenticated user to escalate privileges via adjacent/network access. The issue affects the Intel DCM software before 5.0; impact is described as elevatio...
CVE-2022-23182
The CVE-2022-23182 issue affects Intel® Data Center Manager software prior to version 4.1. It is described as improper access control that could allow an unauthenticated user to potentially escalate privileges via adjacent access. Red Hat and Intel advisories corroborate the same description and ...
CVE-2020-12347
Intel Data Center Manager Console before 3.6.2 is affected by an improper input validation vulnerability that could let an authenticated user escalate privileges via network access. The issue affects the Intel Data Center Manager Console and is documented in Intel advisory CVE-2020-12347, with a ...
CVE-2022-40685
Intel Data Center Manager (DCM) before version 5.0.1 is affected by CVE-2022-40685, where insufficiently protected credentials may allow an authenticated user to disclose information over the network. The issue is described with a CVSS v3.1 base score of 6.5 (Medium) and a network-based vector wi...
CVE-2020-8669
CVE-2020-8669 affects Intel® Data Center Manager Console prior to version 3.6.2. The issue is improper input validation that may allow an authenticated user to disclose information via the network. The vulnerability is documented with an attacker requiring network access and low complexity (authe...
CVE-2022-41979
CVE-2022-41979 affects Intel® Data Center Manager (DCM) software before version 5.1. The flaw is a protection mechanism failure that may allow an authenticated user to escalate privileges via network access. Intel’s advisory for CVE-2022-41979 (and related CVEs in the same advisory) confirms the ...
CVE-2020-12349
The CVE-2020-12349 issue affects Intel® Data Center Manager Console prior to 3.6.2. It stems from improper input validation that may allow an authenticated user to disclose information over the network. The NVD AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N (CVSS 3.1) indicates a network-remote exposure wit...
CVE-2020-12353
The CVE-2020-12353 issue affects Intel Data Center Manager Console prior to 3.6.2. The root cause is improper permissions (privilege misconfig) in the Console, which could allow an authenticated user to enable a denial of service via network access. Impact is a partial availability degradation. R...
CVE-2022-41998
Intel DCM software prior to version 5.1 is affected by CVE-2022-41998: Uncontrolled search path that may allow an authenticated local user to escalate privileges. The vulnerability is documented in the Intel DCM advisory and in CVE records, with a CVSS v3.1 base score of 6.7 (Medium) and a local ...
CVE-2022-44610
Intel DCM software prior to version 5.1 is affected by CVE-2022-44610 due to improper authentication, potentially enabling privilege escalation via network access for an authenticated user. Affected product: Intel® Data Center Manager software before 5.1. Impact per sources: privilege escalation ...
CVE-2022-43475
Intel DCM software before version 5.1 is affected by CVE-2022-43475 due to insecure storage of sensitive information, enabling an authenticated user to potentially escalate privileges via local access. The issue is documented in multiple sources, including Intel’s advisory (Intel SA-00806) which ...
CVE-2022-40210
CVE-2022-40210 affects Intel DCM software prior to version 5.0.1, where an authenticated user could access a data element in the wrong session and potentially escalate privileges via local access. Intel’s advisory (Intel® DCM Advisory, Intel-SA-00772) confirms the vulnerable condition and recomme...
CVE-2022-44619
The CVE-2022-44619 issue affects Intel Data Center Manager (DCM) software prior to version 5.1. The vulnerability is described as insecure storage of sensitive information that could allow an authenticated local user to potentially escalate privileges. Impact is stated as high (C: high, I: high, ...