CVE-2019-14601

CWE-276Incorrect Default Permissions3 documents3 sources
Severity
7.8HIGH
EPSS
0.0%
top 88.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Intel Raid WEB Console 3Intel Intel(r) RWC 3 FOR Windows
Timeline
PublishedJan 17
Latest updateMay 24

Description

Improper permissions in the installer for Intel(R) RWC 3 for Windows before version 7.010.009.000 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel/intel(r)_rwc_3_for_windowsbefore version 7.010.009.000
NVDintel/raid_web_console_3< 7.010.009.000

🔴Vulnerability Details

2
GHSA
GHSA-9q57-prxv-8v77: Improper permissions in the installer for Intel(R) RWC 3 for Windows before version 72022-05-24
CVEList
CVE-2019-14601: Improper permissions in the installer for Intel(R) RWC 3 for Windows before version 72020-01-17
CVE-2019-14601 (HIGH CVSS 7.8) | Improper permissions in the install | cvebase.io