Potential Escalation of Privilege via Local Access in Linux Kernel Mode Driver
CVE-2024-24986
8.8HIGH
Key Information
- Vendor
- Intel
- Status
- Intel(r) Ethernet Network Controllers And Adapters
- Vendor
- CVE Published:
- 14 August 2024
Summary
Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected Version(s)
Intel(R) Ethernet Network Controllers and Adapters = before version 28.3
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database