Intel Data Center Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Intel Data Center Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (30)
CVE-2023-31273 — CVSS 10.0 (critical): Protection mechanism failure in some Intel DCM software before version 5.2 may allow an unauthenticated user to potentially enable…
CVE-2018-3679 — CVSS 9.6 (critical): Escalation of privilege in Reference UI in Intel Data Center Manager SDK 5.0 and before may allow an unauthorized remote unauthenticated…
CVE-2022-23182 — CVSS 8.8 (high): Improper access control in the Intel(R) Data Center Manager software before version 4.1 may allow an unauthenticated user to potentially…
CVE-2022-33942 — CVSS 8.8 (high): Protection mechanism failure in the Intel(R) DCM software before version 5.0 may allow an unauthenticated user to potentially enable…
CVE-2019-0102 — CVSS 8.8 (high): Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated…
CVE-2020-12347 — CVSS 8.8 (high): Improper input validation in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially…
CVE-2022-44619 — CVSS 8.2 (high): Insecure storage of sensitive information in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially…
CVE-2022-21225 — CVSS 8.0 (high): Improper neutralization in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially…
CVE-2019-0109 — CVSS 7.8 (high): Improper folder permissions in Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable…
CVE-2019-0105 — CVSS 7.8 (high): Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated…
CVE-2020-12345 — CVSS 7.8 (high): Improper permissions in the installer for the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to…
CVE-2022-40210 — CVSS 6.8 (medium): Exposure of data element to wrong session in the Intel DCM software before version 5.0.1 may allow an authenticated user to potentially…
CVE-2022-41998 — CVSS 6.7 (medium): Uncontrolled search path in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially enable escalation…
CVE-2019-0106 — CVSS 6.7 (medium): Insufficient run protection in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to…
CVE-2019-0107 — CVSS 6.7 (medium): Insufficient user prompt in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to…
CVE-2020-8669 — CVSS 6.5 (medium): Improper input validation in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially…
CVE-2020-12349 — CVSS 6.5 (medium): Improper input validation in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially…
CVE-2020-12353 — CVSS 6.5 (medium): Improper permissions in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially enable…
CVE-2022-40685 — CVSS 6.5 (medium): Insufficiently protected credentials in the Intel(R) DCM software before version 5.0.1 may allow an authenticated user to potentially…
CVE-2022-43475 — CVSS 6.0 (medium): Insecure storage of sensitive information in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially…
CVE-2022-24378 — CVSS 5.5 (medium): Improper initialization in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially…
CVE-2019-0111 — CVSS 5.5 (medium): Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable…
CVE-2019-0104 — CVSS 5.5 (medium): Insufficient file protection in uninstall routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user…
CVE-2022-23403 — CVSS 5.5 (medium): Improper input validation in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially…
CVE-2019-0110 — CVSS 5.5 (medium): Insufficient key management for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable…
CVE-2019-0108 — CVSS 5.5 (medium): Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable…
CVE-2019-0103 — CVSS 5.5 (medium): Insufficient file protection in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user…
CVE-2022-41979 — CVSS 5.4 (medium): Protection mechanism failure in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially enable…
CVE-2022-44610 — CVSS 5.4 (medium): Improper authentication in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially enable escalation of…
CVE-2019-0112 — CVSS 4.4 (medium): Improper flow control in crypto routines for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to…