CVE-2024-38383 | THREATINT

Description

Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition software for Windows before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

PUBLISHED Reserved 2024-06-19 | Published 2024-11-13 | Updated 2024-11-14 | Assigner intel

MEDIUM: 5.4CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

MEDIUM: 6.7CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem types

escalation of privilege

Uncontrolled search path

References

www.intel.com/...ecurity-center/advisory/intel-sa-01195.html

cve.org (CVE-2024-38383)

nvd.nist.gov (CVE-2024-38383)