Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00196
HistoryNov 13, 2018 - 12:00 a.m.

Intel® RAID Web Console 3 for Windows* Authentication Bypass Advisory

2018-11-1300:00:00
Intel Security Center
www.intel.com
13

0.0004 Low

EPSS

Percentile

12.6%

JSON

Summary:****

A potential security vulnerability in Intel® RAID Web Console 3 for Windows* may allow information disclosure.** **Intel is releasing software updates to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2018-3696

Description: Authentication bypass in the Intel® RAID Web Console 3 for Windows* before 4.186 may allow an unprivileged user to potentially gain administrative privileges via local access.

CVSS Base Score: 5.5 Medium

CVSS Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Affected Products:

Intel® RAID Web Console v3 for Windows* before version 4.186.

Recommendations:

Intel recommends that users of Intel® RAID Web Console v3 for Windows* update to 4.186 or later.

Updates are available for download at this location: <https://downloadcenter.intel.com/download/28183/Intel-RAID-Web-Console-3-for-Windows-?wapkw=rwc3&gt;

Acknowledgements:

Intel would like to thank Joe Standing for reporting this issue and working with us on coordinated disclosure.

Related

cve 1
prion 1
cvelist 1
nvd 1
cve
cve
CVE-2018-3696
2018-11-14 14:29:00
prion
prion
Authentication flaw
2018-11-14 14:29:00
cvelist
cvelist
CVE-2018-3696
2018-11-14 14:00:00
nvd
nvd
CVE-2018-3696
2018-11-14 14:29:00

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for INTEL:INTEL-SA-00196
cve1prion1cvelist1nvd1