CVE-2019-0135

{"id": "CVE-2019-0135", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2019-03-14T20:29:01.600", "references": [{"url": "https://support.lenovo.com/us/en/product_security/LEN-27843", "tags": ["Third Party Advisory"], "source": "secure@intel.com"}, {"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00231.html", "tags": ["Vendor Advisory"], "source": "secure@intel.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "Improper permissions in the installer for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an authenticated user to potentially enable escalation of privilege via local access. L-SA-00206"}, {"lang": "es", "value": "Los permisos inapropiados en el instalador para Accelerated Storage Manager de Intel\u00ae en RSTe de Intel\u00ae anterior a versi\u00f3n 5.5.0.2015, pueden permitir que un usuario autenticado habilite potencialmente una escalada de privilegios por medio de un acceso local. L-SA-00206."}], "lastModified": "2023-03-03T19:57:58.273", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:intel:rapid_storage_technology_enterprise:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "901DA51D-7BEA-4DD6-9ADF-B776D2218C47", "versionEndExcluding": "5.5.0.2015"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:lenovo:thinkstation_p520_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BA83987-B0E4-4BF8-8379-43B90420AAFD"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:lenovo:thinkstation_p520:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6840BC60-44C3-4EA8-96D3-E93796C15310"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:lenovo:thinkstation_p520c_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6E5525D-2EA6-4226-A6A3-5C1E442720E1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:lenovo:thinkstation_p520c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0431D83D-1AC8-4EDE-8568-8695F8E68C35"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:lenovo:thinkstation_p720_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0530CA83-60EA-422B-B0D1-6193336E0AD3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:lenovo:thinkstation_p720:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A77DF681-F12F-4643-B5E1-1BEDE613E343"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:lenovo:thinkstation_p920_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB0B747D-09A0-4FBE-9984-6FDFD38CAADE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:lenovo:thinkstation_p920:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D47FCAA7-B33F-4F00-85BA-AA8ED4790572"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "secure@intel.com"}