Possible Escalation of Privilege via Local Access in Intel Ethernet Connection I219-LM Software

CVE-2024-21769

6.7MEDIUM

Key Information

Vendor: Intel
Status: Intel(r) Ethernet Connection I219-lm Install Software
Vendor: CVE Published:; 14 August 2024

Summary

Uncontrolled search path in some Intel(R) Ethernet Connection I219-LM install software may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected Version(s)

Intel(R) Ethernet Connection I219-LM install software = See references

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published.
Aug 14, 2024
Vulnerability Reserved.
Feb 28, 2024

Collectors

NVD DatabaseMitre Database