CVE-2024-21946

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Nov 12, 2024

Updated: Nov 13, 2024

CWE ID 276

Summary

CVE-2024-21946 is a newly identified vulnerability affecting the AMD RyzenTM Master Utility. The issue stems from incorrect default permissions in the utility's installation directory. An attacker with local access could exploit this vulnerability to escalate privileges, potentially gaining the ability to execute arbitrary code. This poses a significant risk, as privilege escalation allows unauthorized access to sensitive system information or functions. System administrators are encouraged to review and adjust permissions in the AMD RyzenTM Master Utility installation directory to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uA32lj
https://www.cve.org/CVERecord?id=CVE-2024-21946
https://nvd.nist.gov/vuln/detail/CVE-2024-21946

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-21946

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations