Unauthenticated Remote Access Privilege Escalation Vulnerability in Intel Neural Compressor Software

CVE-2024-22476

10CRITICAL

Key Information

Vendor
Intel
Status
Intel(r) Neural Compressor Software
Vendor
CVE Published:
16 May 2024

Badges

đź“° News Worthy

Summary

Improper input validation in some Intel(R) Neural Compressor software before version 2.5.0 may allow an unauthenticated user to potentially enable escalation of privilege via remote access.

Affected Version(s)

Intel(R) Neural Compressor software = before version 2.5.0

News Articles

favicon image

Intel Discloses Max Severity Bug in Its AI Model Compression Software

The improper input validation issue in Intel Neural Compressor enables remote attackers to execute arbitrary code on affected systems.

7 months ago

Refferences

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:
10
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • First article discovered

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database1 News Article(s)
.