PT-2025-46387 · Intel · Intel Rapid Storage Technology
Published
2025-11-11
·
Updated
2025-11-12
·
CVE-2025-24327
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel(R) Rapid Storage Technology Application versions prior to 20.0.1021
Description
The software contains insecure inherited permissions within Ring 3 User Applications that may allow an escalation of privilege. An unprivileged software adversary with an authenticated user and a high complexity attack may enable local code execution. This requires local access and active user interaction. The potential issue may impact the confidentiality, integrity, and availability of the vulnerable system.
Recommendations
Update to version 20.0.1021 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Rapid Storage Technology