CVE-2024-21960 | THREATINT

Description

Incorrect default permissions in the AMD Optimizing CPU Libraries (AOCL) installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

PUBLISHED Reserved 2024-01-03 | Published 2025-05-13 | Updated 2026-02-26 | Assigner AMD

HIGH: 7.3CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem types

CWE-276 Incorrect Default Permissions

Product status

Default status

affected

4.2.1

unaffected

References

www.amd.com/...es/product-security/bulletin/amd-sb-9014.html

cve.org (CVE-2024-21960)

nvd.nist.gov (CVE-2024-21960)

Download JSON