Lucene search
HistoryAug 14, 2024 - 2:15 p.m.
CVE-2024-28172
cve-2024-28172
uncontrolled search path
intel trace analyzer
escalation of privilege
local access
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.5%
Uncontrolled search path for some Intel® Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
inteloneapi_hpc_toolkitRange<2024.1.0
ORinteltrace_analyzer_and_collectorRange<2022.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | oneapi_hpc_toolkit | * | cpe:2.3:a:intel:oneapi_hpc_toolkit:*:*:*:*:*:*:*:* |
| intel | trace_analyzer_and_collector | * | cpe:2.3:a:intel:trace_analyzer_and_collector:*:*:*:*:*:*:*:* |
Related
nessus
nessus
Intel Trace Analyzer and Collector < 2022.1 Privilege Escalation
2024-08-27 00:00:00
cve
cve
CVE-2024-28172
2024-08-14 14:15:25
vulnrichment
vulnrichment
CVE-2024-28172
2024-08-14 13:45:21
cvelist
cvelist
CVE-2024-28172
2024-08-14 13:45:21
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.5%
Related for NVD:CVE-2024-28172