Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html | |
http://www.securityfocus.com/bid/107069 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01 | Third Party Advisory US Government Resource |
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html | Vendor Advisory |
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html | |
http://www.securityfocus.com/bid/107069 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01 | Third Party Advisory US Government Resource |
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html | Vendor Advisory |
Configurations
History
21 Nov 2024, 04:16
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html - | |
References | () http://www.securityfocus.com/bid/107069 - Third Party Advisory, VDB Entry | |
References | () https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01 - Third Party Advisory, US Government Resource | |
References | () https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html - Vendor Advisory |
Information
Published : 2019-02-18 17:29
Updated : 2024-11-21 04:16
NVD link : CVE-2019-0102
Mitre link : CVE-2019-0102
CVE.ORG link : CVE-2019-0102
JSON object : View
Products Affected
intel
- data_center_manager
CWE
CWE-384
Session Fixation