CVE-2020-0564

CWE-276Incorrect Default Permissions3 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 68.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Raid WEB Console 3
Timeline
PublishedFeb 13
Latest updateMay 24

Description

Improper permissions in the installer for Intel(R) RWC3 for Windows before version 7.010.009.000 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel®_raid_web_console_3_(rwc3)_for_windowsbefore version 7.010.009.000
NVDintel/raid_web_console_3< 7.010.009.000

Patches

Patch: www.intel.comPatch: www.intel.com

🔴Vulnerability Details

2
GHSA
GHSA-fcrh-f29f-26xg: Improper permissions in the installer for Intel(R) RWC3 for Windows before version 72022-05-24
CVEList
CVE-2020-0564: Improper permissions in the installer for Intel(R) RWC3 for Windows before version 72020-02-13
CVE-2020-0564 (HIGH CVSS 7.8) | Improper permissions in the install | cvebase.io