CVE-2024-36284

Name of the Vulnerable Software and Affected Versions: Intel Neural Compressor versions prior to v3.0

Description: The issue is related to insufficient input validation in the Intel Neural Compressor library, which can be exploited by a remote attacker to potentially escalate privileges. This can be achieved by an authenticated user via adjacent access.

Recommendations: For versions prior to v3.0, update to version v3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the Intel Neural Compressor software to minimize the risk of exploitation.