CVE-2024-28881

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Nov 13, 2024

Updated: Nov 15, 2024

CWE ID 427

Summary

CVE-2024-28881 is a newly disclosed vulnerability affecting Intel(R) Fortran Compiler Classic software versions prior to 2021.13. This issue enables an authenticated user with local access to potentially escalate privileges due to uncontrolled search paths. By manipulating the application's search path, an attacker could execute arbitrary files or gain elevated access, which could lead to serious system compromises. This vulnerability poses a significant risk to environments where the affected software is used, and immediate updates are recommended to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Fortran Compiler Classic

Affected Vendors

Intel Corp.

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners