Allele Security Intelligence

ASA-2019-00350 – Intel Open Cloud Integrity Technology (Open CIT): Insufficient password handling in the login routine

Posted on June 13, 2019June 14, 2019 by Allele Security Intelligence in Alerts

Insufficient password handling in the login routine for Intel Open Cloud Integrity Technology (Open CIT) may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00349 – Intel Open Cloud Integrity Technology (Open CIT): Insufficient password handling in the login routine

Posted on June 13, 2019June 14, 2019 by Allele Security Intelligence in Alerts

Insufficient password handling in the login routine for Open Cloud Integrity Technology (Open CIT) may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00348 – Intel Open Cloud Integrity Technology (Open CIT) and Intel OpenAttestation: Relative path traversal in the login routine

Posted on June 13, 2019June 13, 2019 by Allele Security Intelligence in Alerts

Relative path traversal in the login routine for Open Cloud Integrity Technology (Open CIT) and OpenAttestation may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00347 – Intel Open Cloud Integrity Technology (Open CIT) and Intel OpenAttestation: Improper input validation in the database

Posted on June 13, 2019June 14, 2019 by Allele Security Intelligence in Alerts

Identifier(s) ASA-2019-00347, CVE-2019-0181, INTEL-SA-00248 Title Improper input validation in the database Vendor(s) Intel Product(s) Intel Open Cloud Integrity Technology (Open CIT) Intel OpenAttestation Affected version(s) Intel Open Cloud Integrity Technology (Open CIT) all versions OpenAttestation all versions Fixed version(s) Intel recommends users of Intel Open Cloud Integrity Technology (Open CIT) and OpenAttestation discontinue use and move … Continue reading ASA-2019-00347 – Intel Open Cloud Integrity Technology (Open CIT) and Intel OpenAttestation: Improper input validation in the database →

ASA-2019-00346 – Intel OpenAttestation: Insufficient session validation in the attestation process

Posted on June 13, 2019June 14, 2019 by Allele Security Intelligence in Alerts

Insufficient session validation in the attestation process for OpenAttestation may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00345 – Intel Open Cloud Integrity Technology (Open CIT): Insufficient input validation in the attestation process

Posted on June 13, 2019June 13, 2019 by Allele Security Intelligence in Alerts

Insufficient input validation in the attestation process for Open Cloud Integrity Technology (Open CIT) may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00344 – Intel Open Cloud Integrity Technology (Open CIT): A race condition in the agent service

Posted on June 13, 2019June 13, 2019 by Allele Security Intelligence in Alerts

A race condition in the agent service for Open CIT may allow an authenticated user to potentially enable escalation of privilege via local access.

ASA-2019-00343 – Intel Open Cloud Integrity Technology (Open CIT): Insufficient password protection in the configuration files

Posted on June 13, 2019June 14, 2019 by Allele Security Intelligence in Alerts

Insufficient password protection in the configuration files for Open CIT may allow an authenticated user to potentially enable information disclosure via local access.