Potential Escalation of Privilege via Local Access in Intel oneAPI Math Kernel Library
CVE-2024-21766
6.7MEDIUM
Key Information
- Vendor
- Intel
- Status
- Intel(r) Oneapi Math Kernel Library Software
- Vendor
- CVE Published:
- 14 August 2024
Summary
Uncontrolled search path for some Intel(R) oneAPI Math Kernel Library software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected Version(s)
Intel(R) oneAPI Math Kernel Library software = before version 2024.1
Refferences
CVSS V3.1
Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database