Privilege Escalation Vulnerability in Intel GPA Software by Intel
CVE-2024-42419

5.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Gpa And Intel(r) Gpa Framework Software Installers
Vendor: CVE Published:; 12 February 2025

What is CVE-2024-42419?

Certain installers for Intel's GPA and GPA Framework were found to have incorrect default permissions. These misconfigurations could allow an authenticated user with local access to leverage the flaw and escalate their privileges, potentially leading to unauthorized actions within affected systems. Organizations using these products should review their configurations and apply necessary security measures to mitigate potential risks.

Affected Version(s)

Intel(R) GPA and Intel(R) GPA Framework software installers See references

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Aug 1, 2024