CVE-2024-21844

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Aug 14, 2024
CWE ID 190

Summary

CVE-2024-21844 is a recently disclosed vulnerability affecting some Intel(R) CSME firmware. This issue involves an integer overflow, which can be exploited by an unauthenticated user through adjacent access. By taking advantage of the integer overflow, an attacker may cause denial of service conditions, potentially disrupting the normal functioning of affected systems. The precise impact and exploitability of this vulnerability are currently under investigation. Intel has recommended that affected organizations apply the forthcoming patch to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share