HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2019-0130

CVSS 7.4v3.1pub. 2019-06-13upd. 2024-11-21

Reflected XSS in web interface for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an unauthenticated user to potentially enable denial of service via network access.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H
  • Intel Rapid Storage Technology Enterprise

    APP
    Intel
    < 5.5.0.2015
  • Lenovo Thinkstation P520

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520c

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520c Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P520 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P720

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P720 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P920

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkstation P920 Firmware

    OS
    Lenovo
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
XSSDoS
CWE
References

Related vulnerabilities

CVE-2019-0135HIGH7.8ten sam produkt

Improper permissions in the installer for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version...

CVE-2022-48188MEDIUM6.7ten sam produkt

A buffer overflow vulnerability in the SecureBootDXE BIOS driver of some Lenovo Desktop and ThinkStation model...

CVE-2021-3956MEDIUM4.3ten sam produkt

A read-only authentication bypass vulnerability was reported in the Third Quarter 2021 release of Lenovo XClar...

CVE-2021-4210MEDIUM6.7ten sam produkt

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo Desktop, ThinkSt...

CVE-2019-6190MEDIUM5.0ten sam produkt

Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Len...