Input Validation Issue in Intel 800 Series Ethernet Driver
CVE-2025-24484

8.8HIGH

Key Information:

Vendor

Intel

Vendor
CVE Published:
12 August 2025

What is CVE-2025-24484?

An improper input validation vulnerability exists within the Linux kernel-mode driver for Intel 800 Series Ethernet, impacting versions prior to 1.17.2. This issue could allow an authenticated user to potentially gain elevated privileges on a local system. Proper validation mechanisms are critical to prevent unauthorized access and maintain the integrity of the affected system. Users should ensure they are running the latest version of the driver to mitigate this risk.

Affected Version(s)

Intel(R) 800 Series Ethernet before version 1.17.2

References

CVSS V4

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.