Improper Access Control in Intel RAID Web Console
CVE-2024-32940

5.7MEDIUM

Key Information:

Vendor: Intel
Status: Raid Web Console
Vendor: CVE Published:; 16 September 2024

What is CVE-2024-32940?

A vulnerability exists in the Intel RAID Web Console software due to improper access control mechanisms. This flaw allows authenticated users to exploit adjacent access to potentially trigger a denial of service condition, impacting the availability of the system. Organizations using Intel RAID Web Console should assess their configurations and ensure that proper access controls are in place to mitigate the risk of exploitation.

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2024