Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html | |
http://www.securityfocus.com/bid/107069 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01 | US Government Resource Third Party Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html | Vendor Advisory |
Configurations
History
No history.
Information
Published : 2019-02-18 17:29
Updated : 2024-02-28 16:48
NVD link : CVE-2019-0102
Mitre link : CVE-2019-0102
CVE.ORG link : CVE-2019-0102
JSON object : View
Products Affected
intel
- data_center_manager
CWE
CWE-384
Session Fixation