Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00341
HistoryFeb 11, 2020 - 12:00 a.m.

Intel® RWC3 Advisory

2020-02-1100:00:00
Intel Security Center
www.intel.com
7
JSON

Summary:

A potential security vulnerability in the Intel® RAID Web Console 3 (RWC3) for Windows* may allow escalation of privilege.** **Intel is releasing software updates to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2020-0564

Description: Improper permissions in the installer for Intel® RWC3 for Windows* before version 7.010.009.000 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Base Score: 6.7 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected Products:

Intel® RWC3 before version 7.010.009.000.

Recommendations:

Intel recommends updating Intel® RWC3 to 7.010.009.000 or later.

Updates are available for download at this location: <https://downloadcenter.intel.com/download/29210/Intel-RAID-Web-Console-3-for-Windows-&gt;

Acknowledgements:

Intel would like to thank clavoillotte for reporting this issue.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

prion 1
cve 1
threatpost 1
prion
prion
Input validation
2020-02-13 19:15:00
cve
cve
CVE-2020-0564
2020-02-13 19:15:00
threatpost
threatpost
Intel Patches High-Severity Flaw in Security Engine
2020-02-11 19:46:29
JSON
Related for INTEL:INTEL-SA-00341
prion1cve1threatpost1