Integer Overflow Vulnerability in Intel 800 Series Ethernet Driver
CVE-2025-24324

2LOW

Key Information:

Vendor: Intel
Status: Intel(r) 800 Series Ethernet
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-24324?

An integer overflow vulnerability in the Linux kernel-mode driver used by Intel 800 Series Ethernet allows authenticated users to exploit local access, potentially leading to privilege escalation. This flaw exists in driver versions prior to 1.17.2, posing a risk for systems utilizing this hardware. Proper mitigation and timely updates are essential for maintaining security integrity.

Affected Version(s)

Intel(R) 800 Series Ethernet before version 1.17.2

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Jan 24, 2025

JSON