RAID Web Console
by Intel
CVEs (32)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-34543 | Med | 0.44 | 6.7 | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2024-34153 | Med | 0.44 | 6.7 | 0.00 | Sep 16, 2024 | Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2024-33848 | Med | 0.42 | 6.5 | 0.00 | Sep 16, 2024 | Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access. | ||
| CVE-2024-32940 | Med | 0.42 | 6.5 | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access. | ||
| CVE-2023-4345 | Med | 0.42 | 6.5 | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user | ||
| CVE-2018-3699 | Med | 0.40 | 6.1 | 0.01 | Nov 14, 2018 | Cross-site scripting in the Intel RAID Web Console v3 for Windows may allow an unauthenticated user to elevate privilege via remote access. | ||
| CVE-2018-3696 | Med | 0.36 | 5.5 | 0.00 | Nov 14, 2018 | Authentication bypass in the Intel RAID Web Console 3 for Windows before 4.186 may allow an unprivileged user to potentially gain administrative privileges via local access. | ||
| CVE-2024-34545 | Med | 0.34 | 5.2 | 0.00 | Sep 16, 2024 | Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access. | ||
| CVE-2024-32666 | Med | 0.31 | 4.7 | 0.00 | Sep 16, 2024 | NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access. | ||
| CVE-2024-36247 | Med | 0.30 | 4.6 | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access. | ||
| CVE-2024-36261 | Low | 0.23 | 3.5 | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access. | ||
| CVE-2024-28170 | Low | 0.21 | 3.3 | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access. |
- risk 0.44cvss 6.7epss 0.00
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
- risk 0.44cvss 6.7epss 0.00
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
- risk 0.42cvss 6.5epss 0.00
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access.
- risk 0.42cvss 6.5epss 0.00
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
- risk 0.42cvss 6.5epss 0.00
Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user
- risk 0.40cvss 6.1epss 0.01
Cross-site scripting in the Intel RAID Web Console v3 for Windows may allow an unauthenticated user to elevate privilege via remote access.
- risk 0.36cvss 5.5epss 0.00
Authentication bypass in the Intel RAID Web Console 3 for Windows before 4.186 may allow an unprivileged user to potentially gain administrative privileges via local access.
- risk 0.34cvss 5.2epss 0.00
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access.
- risk 0.31cvss 4.7epss 0.00
NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access.
- risk 0.30cvss 4.6epss 0.00
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
- risk 0.23cvss 3.5epss 0.00
Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
- risk 0.21cvss 3.3epss 0.00
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access.
Page 2 of 2