Escalation of Privilege Vulnerability in Intel XTU Software for Windows
CVE-2024-39372

5.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Xtu Software For Windows
Vendor: CVE Published:; 12 February 2025

Summary

An uncontrolled search path vulnerability exists in the Intel XTU software for Windows, prior to version 7.14.2.14. This issue can potentially allow authenticated users to exploit the flaw, enabling them to elevate their privileges through local access. Users are encouraged to update to the latest version to mitigate the risks associated with this vulnerability.

Affected Version(s)

Intel(R) XTU software for Windows before version 7.14.2.14

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Jun 29, 2024