CVE-2024-28172
7.3HIGH
Key Information
- Vendor
- Intel
- Status
- Intel(r) Trace Analyzer And Collector Software
- Vendor
- CVE Published:
- 14 August 2024
Summary
Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected Version(s)
Intel(R) Trace Analyzer and Collector software = before version 2022.1
Refferences
CVSS V3.1
Score:
7.3
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database