Intel Trace Analyzer and Collector Vulnerability Could Lead to Information Disclosure
CVE-2024-22384

2.8LOW

Key Information:

Vendor: Intel
Status: Intel(r) Trace Analyzer And Collector Software
Vendor: CVE Published:; 16 May 2024

Summary

Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2022.0.0 published Nov 2023 may allow an authenticated user to potentially enable information disclosure via local access.

Affected Version(s)

Intel(R) Trace Analyzer and Collector software before version 2022.0.0 published Nov 2023

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

2.8

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Jan 17, 2024