Privilege Escalation Risk in Intel DSA Installer for Windows
CVE-2024-32942

5.4MEDIUM

Key Information:

Vendor
Intel
Vendor
CVE Published:
12 February 2025

Summary

The Intel DSA Installer for Windows before version 24.2.19.5 has a vulnerability stemming from incorrect default permissions. This flaw may enable an authenticated user to exploit local access to potentially escalate privileges, exposing the system to further risks. Users are advised to update to the latest version to mitigate this issue.

Affected Version(s)

Intel(R) DSA installer for Windows before version 24.2.19.5

References

CVSS V4

Score:
5.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.