Out-of-Bounds Write Vulnerability in Intel Ethernet Driver
CVE-2024-36274

7.1HIGH

Key Information:

Vendor: Intel
Status: Intel(r) 800 Series Ethernet Driver For Intel(r) Ethernet Adapter Complete Driver Pack
Vendor: CVE Published:; 12 February 2025

What is CVE-2024-36274?

An out-of-bounds write vulnerability exists in the Intel 800 Series Ethernet Driver for Intel Ethernet Adapter Complete Driver Pack versions before 29.1. This flaw may allow an unauthenticated user to trigger a denial of service condition through adjacent access, impacting system stability and functionality. Immediate attention is recommended to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack See references

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Jun 15, 2024

JSON