CVE-2024-36294

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Intel(R) DSA software versions prior to 24.3.26.8

Description: The issue is related to insecure inherited permissions in Intel(R) DSA software, which may allow an authenticated user to potentially enable escalation of privilege via local access. This is due to insufficient access control, which can be exploited by an attacker to elevate their privileges.

Recommendations: For Intel(R) DSA software versions prior to 24.3.26.8, update to version 24.3.26.8 or later to resolve the issue.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-277CWE-732

Related Identifiers

BDU:2024-10485

CVE-2024-36294

Affected Products

Intel Dsa

CVE-2024-36294

Weakness Enumeration

Related Identifiers

Affected Products

References · 6