Main Vulnerability Database Vulnerabilities #VU97322

#VU97322 Incorrect default permissions in RAID Web Console 3 - CVE-2023-4328

Published: September 16, 2024

Vulnerability identifier: #VU97322

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2023-4328

CWE-ID: CWE-276

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
RAID Web Console 3

Software vendor:
Intel

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to incorrect default permissions. A local user with access to the system can obtain keys used for encryption and other sensitive information.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html

#VU97322 Incorrect default permissions in RAID Web Console 3 - CVE-2023-4328

Description

Remediation

External links

Please verify you're human