CVE-2023-24478

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 15, 2023
Updated: Nov 7, 2023
CWE ID 330

Summary

CVE-2023-24478 is a vulnerability affecting Intel Quartus Prime Pro Edition for Linux prior to version 22.4. This issue arises from the use of insufficiently random values in some Intel Agilex software. An authenticated user can potentially exploit this vulnerability through local access and disclose sensitive information. While the exact nature of the information that can be disclosed is not clear, this vulnerability poses a risk to system security and should be addressed by updating to the latest version of Intel Quartus Prime Pro Edition for Linux.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Intel Quartus Prime

Affected Vendors

  • Intel Corp.