Intel Trace Analyzer and Collector Vulnerability Could Lead to Information Disclosure
CVE-2024-22384

2.8LOW

Key Information:

Vendor: Intel
Status: Intel(r) Trace Analyzer And Collector Software
Vendor: CVE Published:; 16 May 2024

What is CVE-2024-22384?

Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2022.0.0 published Nov 2023 may allow an authenticated user to potentially enable information disclosure via local access.

Affected Version(s)

Intel(R) Trace Analyzer and Collector software before version 2022.0.0 published Nov 2023

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

2.8

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Jan 17, 2024