CVE-2020-12349: Input Validation
First published: Thu Nov 12 2020(Updated: )
Improper input validation in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially enable information disclosure via network access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Data Center Manager | <3.6.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-12349?
CVE-2020-12349 is an identified vulnerability in the Intel Data Center Manager Console before version 3.6.2 that may allow an authenticated user to potentially enable information disclosure via network access.
How severe is CVE-2020-12349?
The severity of CVE-2020-12349 is medium with a severity value of 6.5.
How can an authenticated user exploit CVE-2020-12349?
An authenticated user can potentially enable information disclosure via network access as a result of the improper input validation vulnerability in the Intel Data Center Manager Console before version 3.6.2.
What software versions are affected by CVE-2020-12349?
The Intel Data Center Manager Console versions up to and excluding 3.6.2 are affected by CVE-2020-12349.
Is there a fix available for CVE-2020-12349?
To fix CVE-2020-12349, it is recommended to update the Intel Data Center Manager Console to version 3.6.2 or later.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/event
- agent/tags
- agent/description
- agent/first-publish-date
- vendor/intel
- canonical/intel data center manager