HIGH✓ PATCH🇬🇧 English

CVE-2019-0135

CVSS 7.8v3.1pub. 2019-03-14upd. 2024-11-21

Improper permissions in the installer for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an authenticated user to potentially enable escalation of privilege via local access. L-SA-00206

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Intel Rapid Storage Technology Enterprise

    APP
    Intel
    < 5.5.0.2015
  • Lenovo Thinkstation P520

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520c

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520c Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P720

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P720 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P920

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P920 Firmware

    OS
    Lenovo
    wszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2019-0130HIGH7.4ten sam produkt

Reflected XSS in web interface for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0....

CVE-2022-48188MEDIUM6.7ten sam produkt

A buffer overflow vulnerability in the SecureBootDXE BIOS driver of some Lenovo Desktop and ThinkStation model...

CVE-2021-3956MEDIUM4.3ten sam produkt

A read-only authentication bypass vulnerability was reported in the Third Quarter 2021 release of Lenovo XClar...

CVE-2021-4210MEDIUM6.7ten sam produkt

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo Desktop, ThinkSt...

CVE-2019-6190MEDIUM5.0ten sam produkt

Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Len...