Exposure of data element to wrong session in the Intel DCM software before version 5.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:LIntel Data Center Manager
APPIntel< 5.0.1
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Related vulnerabilities
CVE-2023-31273CRITICAL10.0ten sam produkt
Protection mechanism failure in some Intel DCM software before version 5.2 may allow an unauthenticated user t...
CVE-2018-3679CRITICAL9.6ten sam produkt
Escalation of privilege in Reference UI in Intel Data Center Manager SDK 5.0 and before may allow an unauthori...
CVE-2022-44619HIGH8.2ten sam produkt
Insecure storage of sensitive information in the Intel(R) DCM software before version 5.1 may allow an authent...
CVE-2022-33942HIGH8.8ten sam produkt
Protection mechanism failure in the Intel(R) DCM software before version 5.0 may allow an unauthenticated user...
CVE-2022-21225HIGH8.0ten sam produkt
Improper neutralization in the Intel(R) Data Center Manager software before version 4.1 may allow an authentic...