CVE-2024-28050

CWE-284 — Improper Access Control3 documents3 sources

Severity

5.1MEDIUM

EPSS

0.1%

top 71.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel ARC A Graphics Intel Iris XE Graphics

Timeline

PublishedAug 14

Description

Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

▶CVEListV5intel(r)_arc(tm)_&_iris(r)_xe_graphics_softwarebefore version 31.0.101.4824

▶NVDintel/iris_xe_graphics< 31.0.101.4824

▶NVDintel/arc_a_graphics< 31.0.101.4824

🔴Vulnerability Details

CVEList

CVE-2024-28050: Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31↗2024-08-14

▶

GHSA

GHSA-pc8v-x8wr-7grq: Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31↗2024-08-14

▶