PT-2025-46390 · Intel · Intel Cip
Published
2025-11-11
·
Updated
2025-11-12
·
CVE-2025-24516
CVSS v3.1
4.5
Medium
| Vector | AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Intel(R) CIP software versions prior to WIN DCA 2.4.0.11001
Description
An improper access control issue exists in some Intel(R) CIP software. This may allow an information disclosure within Ring 3 User Applications. An unprivileged software adversary, combined with a privileged user and a low complexity attack, could potentially enable data exposure via adjacent access. The issue may impact the confidentiality of the vulnerable system. No user interaction is required for exploitation.
Recommendations
Update to version WIN DCA 2.4.0.11001 or later.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Cip