CVE-2024-23908

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 14, 2024

Updated: Sep 12, 2024

CWE ID 277

CWE ID 732

Summary

CVE-2024-23908 is a recently disclosed vulnerability affecting some Intel(R) FPGA software license daemons before version v11.19.5.0. This issue involves insecure inherited permissions, enabling an authenticated user with local access to potentially escalate privileges. The vulnerability could allow the user to gain unauthorized access to sensitive functionalities, leading to significant security risks. Intel has released a patch to address this vulnerability, and users are strongly advised to update their software to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/utZ8fx
https://www.cve.org/CVERecord?id=CVE-2024-23908
https://nvd.nist.gov/vuln/detail/CVE-2024-23908

Back to Vulnerability Database

CVE-2024-23908

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations