CVE-2022-40210

Exposure of data element to wrong session in the Intel DCM software before version 5.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Configurations

Configuration 1 (hide)

cpe:2.3:a:intel:data_center_manager:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:21

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00772.html - Patch, Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00772.html - Patch, Vendor Advisory
CVSS v2 : unknown
v3 : 7.8
v2 : unknown
v3 : 6.8

Information

Published : 2023-05-10 14:15

Updated : 2024-11-21 07:21


NVD link : CVE-2022-40210

Mitre link : CVE-2022-40210

CVE.ORG link : CVE-2022-40210


JSON object : View

Products Affected

intel

  • data_center_manager
CWE
CWE-488

Exposure of Data Element to Wrong Session

CWE-668

Exposure of Resource to Wrong Sphere