PT-2018-1594 · Intel · Intel Data Center Manager Sdk

Published

2018-09-12

Updated

2019-10-03

CVE-2018-3679

CVSS v3.1

9.6

Critical

Vector

AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Data Center Manager SDK versions 5.0 and before

Description The issue is related to an escalation of privilege in the Reference UI component of the Intel Data Center Manager SDK, caused by privilege management errors. This may allow an unauthorized remote unauthenticated user to potentially execute code with administrator privileges.

Recommendations For Intel Data Center Manager SDK versions 5.0 and before, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

BDU:2018-01151

CVE-2018-3679

Affected Products

Intel Data Center Manager Sdk

PT-2018-1594 · Intel · Intel Data Center Manager Sdk

CVE-2018-3679

Weakness Enumeration

Related Identifiers

Affected Products

References · 5