Privilege Escalation Vulnerability in Intel Advisor Software
CVE-2024-26025

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Advisor Software
Vendor: CVE Published:; 14 August 2024

What is CVE-2024-26025?

A vulnerability exists in Intel(R) Advisor software versions prior to 2024.1 due to incorrect default permissions. This flaw may allow authenticated users to exploit local access, leading to potential privilege escalation. Affected users are encouraged to review their implementations and apply the necessary updates to secure their systems against potential unauthorized actions.

Affected Version(s)

Intel(R) Advisor software before version 2024.1

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2024
Vulnerability Reserved
Mar 11, 2024