Potential Escalation of Privilege via Local Access in Intel oneAPI Math Kernel Library

CVE-2024-21766

6.7MEDIUM

Key Information

Vendor
Intel
Status
Intel(r) Oneapi Math Kernel Library Software
Vendor
CVE Published:
14 August 2024

Summary

Uncontrolled search path for some Intel(R) oneAPI Math Kernel Library software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected Version(s)

Intel(R) oneAPI Math Kernel Library software = before version 2024.1

Refferences

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.