Privilege Escalation Flaw in Intel Arc and Iris Xe Graphics Software
CVE-2024-46895

5.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Arc™ & Iris(r) Xe Graphics Software
Vendor: CVE Published:; 13 May 2025

What is CVE-2024-46895?

An uncontrolled search path vulnerability in Intel Arc and Iris Xe graphics software prior to versions 32.0.101.6083 and 32.0.101.5736 can permit authenticated users to gain elevated privileges through local access. This flaw underscores the importance of maintaining updated software to mitigate potential security risks.

Affected Version(s)

Intel(R) Arc™ & Iris(R) Xe graphics software before version 32.0.101.6083/32.0.101.5736

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 13, 2025
Vulnerability Reserved
Sep 19, 2024