CVE-2019-0102

CVE Database · CVE-2019-0102

CVE-2019-0102

· N/AModified

CVSS v3.1

N/A

EPSS

1.27%

Published

Feb 18, 2019

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

Weaknesses (CWE)

CWE-384

Affected Products (1)

intel · data_center_manager (up to 5.0.2)vulnerable

References (8)

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html

http://www.securityfocus.com/bid/107069

Third Party AdvisoryVDB Entry

https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01

Third Party AdvisoryUS Government Resource

https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html

http://www.securityfocus.com/bid/107069

Third Party AdvisoryVDB Entry

https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01

KEV Catalog EPSS Scores Vendors All CVEs