CVE-2024-23908
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Aug 14, 2024
Updated: Sep 12, 2024
CWE ID 277
CWE ID 732
Summary
CVE-2024-23908 is a recently disclosed vulnerability affecting some Intel(R) FPGA software license daemons before version v11.19.5.0. This issue involves insecure inherited permissions, enabling an authenticated user with local access to potentially escalate privileges. The vulnerability could allow the user to gain unauthorized access to sensitive functionalities, leading to significant security risks. Intel has released a patch to address this vulnerability, and users are strongly advised to update their software to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share