Vulnerabilities > CVE-2019-0105 - Incorrect Authorization vulnerability in Intel Data Center Manager

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

intel

CWE-863

NVD

Published: 2019-02-18

Updated: 2020-08-24

Summary

Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Data Center Manager *	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

http://www.securityfocus.com/bid/107069
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html