PT-2018-16132 · Intel · Intel Raid Web Console

Published

2018-11-14

Updated

2018-12-31

CVE-2018-3699

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Intel RAID Web Console version v3 for Windows

Description The issue allows an unauthenticated user to elevate privilege via remote access due to cross-site scripting in the Intel RAID Web Console for Windows.

Recommendations For Intel RAID Web Console version v3 for Windows, update to a version that includes a fix for this issue, as no specific workaround is provided.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2018-3699

Affected Products

Intel Raid Web Console

PT-2018-16132 · Intel · Intel Raid Web Console

CVE-2018-3699

Weakness Enumeration

Related Identifiers

Affected Products

References · 4