Lucene search

IntelVULNRICHMENT:CVE-2024-24968

HistorySep 16, 2024 - 4:38 p.m.

CVE-2024-24968

2024-09-1616:38:47

CWE-1245

intel

github.com

intel

processors

finite state machines

denial of service

local access

cve-2024-24968

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

CVSS4

5.6

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:N/SC:N/VI:N/SI:N/VA:H/SA:N

AI Score

6.4

Confidence

High

EPSS

Percentile

9.6%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Improper finite state machines (FSMs) in hardware logic in some Intel® Processors may allow an privileged user to potentially enable a denial of service via local access.

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01097.html

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

CVSS4

5.6

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:N/SC:N/VI:N/SI:N/VA:H/SA:N

AI Score

6.4

Confidence

High

EPSS

Percentile

9.6%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-24968