Privilege Escalation Vulnerability in Intel Advisor Software
CVE-2024-39284

5.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Advisor Software
Vendor: CVE Published:; 12 February 2025

What is CVE-2024-39284?

An uncontrolled search path vulnerability exists in Intel Advisor software before version 2024.2, potentially allowing an authenticated user with local access to escalate privileges. This flaw could be exploited to execute files or commands that should typically be restricted, leading to unauthorized actions within the system.

Affected Version(s)

Intel(R) Advisor software before version 2024.2

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Jun 25, 2024