CVE-2019-0135

Improper permissions in the installer for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an authenticated user to potentially enable escalation of privilege via local access. L-SA-00206
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
intelCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
VendorProductVersion
intelrapid_storage_technology_enterprise
𝑥
< 5.5.0.2015
lenovothinkstation_p520_firmware
-
lenovothinkstation_p520c_firmware
-
lenovothinkstation_p720_firmware
-
lenovothinkstation_p920_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.lenovo.com/us/en/product_security/LEN-27843
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00231.html
https://support.lenovo.com/us/en/product_security/LEN-27843
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00231.html