CVE-2019-0112

Опубликовано: 18 фев. 2019

Источник: nvd

CVSS3: 4.4

CVSS2: 2.1

EPSS Низкий

Описание

Improper flow control in crypto routines for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable a denial of service via local access.

Ссылки

http://www.securityfocus.com/bid/107064
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
Third Party Advisory
US Government Resource
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html
Vendor Advisory
http://www.securityfocus.com/bid/107064
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-01
Third Party Advisory
US Government Resource
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00215.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:intel:data_center_manager:*:*:*:*:*:*:*:*

Версия до 5.0.2 (исключая)

EPSS

Процентиль: 46%

0.00231

Низкий

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-prm6-7mfp-vr8x