CVE-2024-22378

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Aug 14, 2024

CWE ID 276

Summary

CVE-2024-22378 is a vulnerability affecting some Intel Unite(R) Client Extended Display Plugin software installers prior to version 1.1.352.157. The issue arises from incorrect default permissions, enabling an authenticated user to potentially escalate privileges through local access. This flaw could allow malicious actors to gain elevated access to affected systems, posing a significant risk to security. Users are strongly advised to update their software to the latest version to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uLDy5h
https://www.cve.org/CVERecord?id=CVE-2024-22378
https://nvd.nist.gov/vuln/detail/CVE-2024-22378

Back to Vulnerability Database

CVE-2024-22378

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations