Incorrect Default Permissions May Lead to Escalation of Privilege via Local Access
CVE-2024-23495

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Distribution For Gdb Software
Vendor: CVE Published:; 14 August 2024

What is CVE-2024-23495?

The Intel Distribution for GDB software has been found to exhibit incorrect default permissions that could allow an authenticated user to escalate their privileges through local access. This vulnerability can pose significant security risks, particularly in environments where sensitive data and applications are operated. Prior to version 2024.0.1, the potential for unauthorized access highlights the importance of updating to secure versions to mitigate the risks associated with this vulnerability. For more detailed information, please visit the official advisory.

Affected Version(s)

Intel(R) Distribution for GDB software before version 2024.0.1

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2024
Vulnerability Reserved
Jan 24, 2024