CVE-2019-11119

Published: Jun 13, 2019Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Insufficient session validation in the service API for Intel(R) RWC3 version 4.186 and before may allow an unauthenticated user to potentially enable escalation of privilege via network access.

Affected (1)

Products: Intel: Raid Web Console 3

Intel

1 product

Raid Web Console 3

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Intel Raid Web Console 3	Up to 4.186

References (4)

http://www.securityfocus.com/bid/108780

Source: secure@intel.com

Broken LinkThird Party AdvisoryVDB Entry

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00259.html

Source: secure@intel.com

PatchVendor Advisory

http://www.securityfocus.com/bid/108780

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00259.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.