CVE-2024-22476

Name of the Vulnerable Software and Affected Versions: Intel Neural Compressor versions prior to 2.5.0

Description: The issue is related to improper input validation in the Intel Neural Compressor software, which may allow an unauthenticated user to potentially enable escalation of privilege via remote access. This could be exploited by an attacker to gain elevated privileges. The vulnerability is associated with errors in processing input data.

Recommendations: For versions prior to 2.5.0, update to version 2.5.0 or later to mitigate the issue. As a temporary workaround, consider restricting access to the vulnerable software until a patch is applied. Avoid using the software for remote access until the issue is resolved.