CVE-2019-0177

CVE Database · CVE-2019-0177

CVE-2019-0177

· MEDIUMModified

CVSS v3.1

4.4

EPSS

0.34%

Published

Jun 13, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Insufficient password protection in the attestation database for Open CIT may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected Products (2)

intel · open_cloud_integrity_tehnologyvulnerable

intel · openattestationvulnerable

References (4)

https://www.intel.com/content/www/us/en/security-center/advisory/in

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00248.html

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/in

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00248.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs