Lucene search
IntelCVE-2024-22476HistoryMay 16, 2024 - 9:16 p.m.
CVE-2024-22476
2024-05-1621:16:07
CWE-20
intel
web.nvd.nist.gov
45
input validation
intel neural compressor
unauthenticated user
remote access
privilege escalation
cve-2024-22476
nvd
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
7.5
Confidence
High
EPSS
0
Percentile
9.0%
Improper input validation in some Intel® Neural Compressor software before version 2.5.0 may allow an unauthenticated user to potentially enable escalation of privilege via remote access.
Affected configurations
Node
intelneural_compressor_softwareRange<2.5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | neural_compressor_software | * | cpe:2.3:a:intel:neural_compressor_software:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) Neural Compressor software",
"versions": [
{
"version": "before version 2.5.0",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
cvelist
cvelist
CVE-2024-22476
2024-05-16 20:46:56
vulnrichment
vulnrichment
CVE-2024-22476
2024-05-16 20:46:56
nvd
nvd
CVE-2024-22476
2024-05-16 21:16:07
nessus
nessus
Intel Neural Compressor < 2.5.0 Multiple Vulnerabilities
2024-05-29 00:00:00
thn
thn
Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool
2024-06-24 13:52:00
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
7.5
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-22476