CVE-2024-24852

Summary

CVE-2024-24852 is a newly disclosed vulnerability affecting some Intel(R) Ethernet Adapter Complete Driver Pack installations. This issue involves an uncontrolled search path that could potentially allow an authenticated user to escalate privileges through local access. If exploited, this vulnerability could enable attackers to elevate their system access levels, leading to significant security risks. Prior to version 29.1, these driver packs are susceptible to this escalation of privilege attack. It is essential for organizations and individuals using the affected Intel Ethernet Adapters to update their drivers as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.