CVE-2024-26022

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 14, 2024
Updated: Sep 6, 2024
CWE ID 284

Summary

CVE-2024-26022 is a newly disclosed vulnerability affecting some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC systems. The issue involves improper access control, enabling an authenticated user to potentially escalate privileges through local access. This could allow an attacker to gain elevated system permissions, compromising the security of the affected system. Intel has released updates to address this vulnerability, and it is recommended that users apply these patches promptly to mitigate the risk. Failure to do so may result in unauthorized system access and potential data theft or system damage.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share