Improper Input Validation in Intel FPGA Products
CVE-2024-22390

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Fpga Products
Vendor: CVE Published:; 16 May 2024

Summary

Improper input validation in the firmware of several Intel FPGA products can potentially result in a denial of service. This flaw affects versions prior to 2.9.1, potentially exposing systems to interruptions in service. As a result, it is crucial for users to upgrade to the latest firmware version to mitigate these risks. For additional details, please refer to the advisory provided by Intel.

Affected Version(s)

Intel(R) FPGA products before version 2.9.1

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 16, 2024
Vulnerability Reserved
Jan 10, 2024