Escalation of Privilege Vulnerability in Intel DSA Software
CVE-2024-39805

7.3HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Dsa Software
Vendor: CVE Published:; 12 February 2025

Summary

A critical security issue has been identified in Intel DSA software, which prior to version 23.4.39 exhibits insufficient verification of data authenticity. This vulnerability permits an authenticated user to potentially escalate their privileges with local access, thereby posing significant security risks. It is crucial for users to update to the latest version to mitigate any potential threats stemming from this issue. More detailed information is available in the official Intel advisory.

Affected Version(s)

Intel(R) DSA software before version 23.4.39

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Jul 12, 2024