HIGH✓ PATCH🇬🇧 English

CVE-2019-0130

CVSS 7.4v3.1pub. 2019-06-13upd. 2024-11-21

Reflected XSS in web interface for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an unauthenticated user to potentially enable denial of service via network access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H
  • Intel Rapid Storage Technology Enterprise

    APP
    Intel
    < 5.5.0.2015
  • Lenovo Thinkstation P520

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520c

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520c Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P720

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P720 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P920

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P920 Firmware

    OS
    Lenovo
    wszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
XSSDoS
CWE
Referencje

Powiązane podatności

CVE-2019-0135HIGH7.8ten sam produkt

Improper permissions in the installer for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version...

CVE-2022-48188MEDIUM6.7ten sam produkt

A buffer overflow vulnerability in the SecureBootDXE BIOS driver of some Lenovo Desktop and ThinkStation model...

CVE-2021-3956MEDIUM4.3ten sam produkt

A read-only authentication bypass vulnerability was reported in the Third Quarter 2021 release of Lenovo XClar...

CVE-2021-4210MEDIUM6.7ten sam produkt

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo Desktop, ThinkSt...

CVE-2019-6190MEDIUM5.0ten sam produkt

Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Len...