VYPR

Intel SA-00213

by Intel

CVEs (10)

  • CVE-2019-0102HigFeb 18, 2019
    risk 0.57cvss 8.8epss 0.01

    Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

  • CVE-2019-0091HigMay 17, 2019
    risk 0.51cvss 7.8epss 0.01

    Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.

  • CVE-2019-0109HigFeb 18, 2019
    risk 0.51cvss 7.8epss 0.00

    Improper folder permissions in Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2019-0105HigFeb 18, 2019
    risk 0.51cvss 7.8epss 0.00

    Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2019-0170MedMay 17, 2019
    risk 0.44cvss 6.7epss 0.00

    Buffer overflow in subsystem in Intel(R) DAL before version 12.0.35 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2019-0099MedMay 17, 2019
    risk 0.44cvss 6.8epss 0.00

    Insufficient access control vulnerability in subsystem in Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

  • CVE-2019-0089MedMay 17, 2019
    risk 0.44cvss 6.7epss 0.00

    Improper data sanitization vulnerability in subsystem in Intel(R) SPS before versions SPS_E5_04.00.04.381.0, SPS_E3_04.01.04.054.0, SPS_SoC-A_04.00.04.181.0, and SPS_SoC-X_04.00.04.086.0 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2019-0107MedFeb 18, 2019
    risk 0.44cvss 6.7epss 0.00

    Insufficient user prompt in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2019-0108MedFeb 18, 2019
    risk 0.36cvss 5.5epss 0.00

    Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable disclosure of information via local access.

  • CVE-2019-0112MedFeb 18, 2019
    risk 0.29cvss 4.4epss 0.00

    Improper flow control in crypto routines for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable a denial of service via local access.