Privilege Escalation Vulnerability in Intel Graphics Software
CVE-2024-21864

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Arc(tm) & Iris(r) Xe Graphics Software
Vendor: CVE Published:; 16 May 2024

What is CVE-2024-21864?

An improper neutralization vulnerability exists in Intel Arc and Iris Xe Graphics software that affects versions prior to 31.0.101.5081. This flaw may allow an unauthenticated user with adjacent network access to enable a potential escalation of privilege. This vulnerability can lead to unauthorized control over system resources or sensitive data, impacting the overall security of affected systems. Recommended actions include updating to the latest versions of the software to mitigate potential risks and vulnerabilities.

Affected Version(s)

Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.5081

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Jan 2, 2024