CVE-2024-36482

Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable escalation of privilege via local access.

CVSS v3.0 6.7 MEDIUM

6.7^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01182.html	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:intel:computing_improvement_program:*:*:*:*:*:*:*:*

History

04 Feb 2025, 18:27

Type	Values Removed	Values Added
CPE		cpe:2.3:a:intel:computing_improvement_program::::::::
References	~~() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01182.html -~~	() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01182.html - Patch, Vendor Advisory
CWE	~~CWE-20~~	NVD-CWE-noinfo
First Time		Intel Intel computing Improvement Program
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.7

13 Nov 2024, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-11-13 21:15

Updated : 2025-02-04 18:27

NVD link : CVE-2024-36482

Mitre link : CVE-2024-36482

JSON object : View

Products Affected

intel

computing_improvement_program

CWE

NVD-CWE-noinfo

6.7 /10