CVE-2024-6029

CVE-2024-6029 concerns the Tesla Model S Iris Modem firewall, where a race-condition flaw in the firewall service arises from a failure to obtain the xtables lock. This vulnerability allows network-adjacent attackers to bypass firewall rules without authentication. The issue is documented across ...

CVE-2024-6029 Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability

Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within th...

PT-2025-18323 · Tesla · Tesla Model S

Name of the Vulnerable Software and Affected Versions: Tesla Model S affected versions not specified Description: This issue allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. The flaw exists within the firewall service due to a failure ...

PT-2025-18326 · Tesla · Tesla Model S Iris Modem

Name of the Vulnerable Software and Affected Versions: Tesla Model S Iris Modem affected versions not specified Description: This issue allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. The flaw exists within the ql atfwd process due to the lack of proper...

(Pwn2Own) Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within the firewall service. The issue results from a failure to obtain the...

CVE-2024-28050

Improper access control in some IntelR ArcTM & IrisR Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access...

CVE-2024-28050

Improper access control in some IntelR ArcTM & IrisR Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access...

CVE-2024-28050

Improper access control in some IntelR ArcTM & IrisR Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access...

CVE-2024-28050

Improper access control in some IntelR ArcTM & IrisR Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access...

Intel Arc & Iris Xe Graphics Software August 2024 Security Update

Intel has informed HP of a potential security vulnerability in the Intel® Arc™ & Iris® Xe Graphics software, which might allow denial of service. Intel is releasing updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

 Intel® Arc™ & Iris® Xe Graphics Software Advisory

Summary: A potential security vulnerability in the Intel® Arc™ & Iris® Xe Graphics software may allow denial of service. Intel is releasing updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-28050 Description: Improper access control in some Intel® Arc™ & Iri...

The vulnerability of the EVTX IrisEVTXModule file processing module arises from incorrect restrictions on the path name of the restricted directory. This allows attackers to execute arbitrary code or perform Server Side Template Injection (SSTI) attacks.

The vulnerability of the EVTX IrisEVTXModule file processing module is related to incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or perform Server Side Template Injection SSTI attacks...

CVE-2024-34060

IrisEVTXModule is an interface module for Evtx2Splunk and Iris in order to ingest Microsoft EVTX log files. The iris-evtx-module is a pipeline plugin of iris-web that processes EVTX files through IRIS web application. During the upload of an EVTX through this pipeline, the filename is not safely...

CVE-2024-34060 Arbitrary File Write in IRIS EVTX Pipeline

IrisEVTXModule is an interface module for Evtx2Splunk and Iris in order to ingest Microsoft EVTX log files. The iris-evtx-module is a pipeline plugin of iris-web that processes EVTX files through IRIS web application. During the upload of an EVTX through this pipeline, the filename is not safely...

CVE-2024-34060 Arbitrary File Write in IRIS EVTX Pipeline

IrisEVTXModule is an interface module for Evtx2Splunk and Iris in order to ingest Microsoft EVTX log files. The iris-evtx-module is a pipeline plugin of iris-web that processes EVTX files through IRIS web application. During the upload of an EVTX through this pipeline, the filename is not safely...

CVE-2024-34060

CVE-2024-34060 affects IrisEVTXModule, an interface plugin used with Evtx2Splunk and Iris to ingest Microsoft EVTX logs via the iris-web pipeline. The vulnerability arises from unsafe handling of EVTX filenames during upload, enabling Arbitrary File Write and potentially remote code execution (RC...

CVE-2024-34060 Arbitrary File Write in IRIS EVTX Pipeline

IrisEVTXModule is an interface module for Evtx2Splunk and Iris in order to ingest Microsoft EVTX log files. The iris-evtx-module is a pipeline plugin of iris-web that processes EVTX files through IRIS web application. During the upload of an EVTX through this pipeline, the filename is not safely...

CVE-2024-21864

Improper neutralization in some IntelR ArcTM & IrisR Xe Graphics software before version 31.0.101.5081 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent network access...

CVE-2024-21864

Improper neutralization in some IntelR ArcTM & IrisR Xe Graphics software before version 31.0.101.5081 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent network access...

CVE-2024-21864

CVE-2024-21864 affects Intel Arc and Iris Xe Graphics software prior to version 31.0.101.5081. The underlying issue is improper neutralization in the graphics software, which could allow an unauthenticated user to escalate privileges via adjacent network access. Affected products are Intel Arc an...