CVE-2019-0181

Insufficient password protection in the attestation database for Open CIT may allow an authenticated user to potentially enable information disclosure via local access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
intelopen_cloud_integrity_tehnology
-
intelopenattestation
-
𝑥
= Vulnerable software versions
References
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00248.html
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00248.html