PT-2024-8817 · Intel · Intel Quartus Prime Pro Edition+1
Ycdxsb
·
Published
2024-11-12
·
Updated
2024-11-15
·
CVE-2024-31407
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Intel High Level Synthesis Compiler for Intel Quartus Prime Pro Edition Software versions prior to 24.1
Description:
The issue is related to an uncontrolled search path element in the Intel High Level Synthesis (HLS) Compiler, part of the Intel Quartus Prime Pro system. This could potentially allow an authenticated user to escalate their privileges via local access.
Recommendations:
For versions prior to 24.1, update to version 24.1 or later to resolve the issue.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel High Level Synthesis Compiler
Intel Quartus Prime Pro Edition