CVE-2024-36482

CWE-20Improper Input Validation3 documents3 sources
Severity
7.1HIGH
EPSS
0.1%
top 68.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Computing Improvement Program
Timeline
PublishedNov 13

Description

Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5intel(r)_cip_softwarebefore version 2.4.10852

Patches

Patch: www.intel.com

🔴Vulnerability Details

2
CVEList
CVE-2024-36482: Improper input validation in some Intel(R) CIP software before version 22024-11-13
GHSA
GHSA-w8mp-53m7-xcpv: Improper input validation in some Intel(R) CIP software before version 22024-11-13
CVE-2024-36482 (HIGH CVSS 7.1) | Improper input validation in some I | cvebase.io