PT-2024-8902 · Intel · Intel(R) Fpga

Falcon Corruption

Published

2024-08-13

Updated

2024-09-12

CVE-2024-23908

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Intel(R) FPGA software versions prior to v11.19.5.0

Description: The issue is related to insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software. This may allow an authenticated user to potentially enable escalation of privilege via local access.

Recommendations: For versions prior to v11.19.5.0, update to version v11.19.5.0 or later to resolve the issue. As a temporary workaround, consider restricting local access to the Flexlm License Daemons until a patch is applied.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-277CWE-732

Related Identifiers

BDU:2024-10569

CVE-2024-23908

Affected Products

Intel(R) Fpga

PT-2024-8902 · Intel · Intel(R) Fpga

CVE-2024-23908

Weakness Enumeration

Related Identifiers

Affected Products

References · 7