Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00199
HistoryNov 13, 2018 - 12:00 a.m.

Intel® RAID Web Console 3 Cross-site Scripting Vulnerability Advisory

2018-11-1300:00:00
Intel Security Center
www.intel.com
6

0.001 Low

EPSS

Percentile

32.3%

JSON

Summary:

A potential security vulnerability in the Intel® RAID Web Console (RWC) may allow remote manipulation of RWC console output.** **Intel is releasing RAID Web Console updates to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2018-3699

Description: Cross-site scripting in the Intel® RAID Web Console v3 for Windows* may allow an unauthenticated user to elevate privilege via remote access.

CVSS Base Score: 3.8 Low

CVSS Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

Affected Products:

Intel® RAID Web Console v3 before 4.186.

Recommendations:

Intel recommends that users of Intel® RAID Web Console update to 4.186 or later.

Updates are available for download at this location: <https://downloadcenter.intel.com/download/28183/Intel-RAID-Web-Console-3-for-Windows-?wapkw=rwc3&gt;

Acknowledgements:

Intel would like to thank Joe Standing for reporting this issue and working with us on coordinated disclosure.

Related

prion 1
cvelist 1
cve 1
nvd 1
prion
prion
Cross site scripting
2018-11-14 14:29:00
cvelist
cvelist
CVE-2018-3699
2018-11-14 14:00:00
cve
cve
CVE-2018-3699
2018-11-14 14:29:00
nvd
nvd
CVE-2018-3699
2018-11-14 14:29:00

0.001 Low

EPSS

Percentile

32.3%

JSON
Related for INTEL:INTEL-SA-00199
prion1cvelist1cve1nvd1