VDB

CVE-2024-37025

CVE-2024-37025 PUBLISHED CVSS 6.699999809265137 MEDIUM

Incorrect execution-assigned permissions in some Intel(R) Advanced Link Analyzer Standard Edition software installer before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

EPSS 0.09% · 24.8th percentile

Risk Scores

CVSS 3.1
6.699999809265137
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.09%
24.8th percentile

Affected Products

VendorProductVersions
intel_advanced_link_analyzer_standard_edition_software_installerintel_advanced_link_analyzer_standard_edition_software_installer0
n/aIntel(R) Advanced Link Analyzer Standard Edition software installerbefore version 23.1.1

Timeline

  • Nov 13, 2024 CVE Published
  • Nov 13, 2024 Coalition ESS Score
  • Nov 14, 2024 EPSS Score
  • Nov 14, 2024 PoC Published
  • Nov 15, 2024 Coalition ESS Score
  • Dec 3, 2024 EPSS Score
  • Dec 20, 2024 EPSS Score
  • Jan 7, 2025 EPSS Score
  • Jan 24, 2025 EPSS Score
  • Feb 11, 2025 EPSS Score
  • Mar 1, 2025 EPSS Score
  • Mar 18, 2025 EPSS Score

References

…and 25 more

Open in Interactive Console →
$ Console Community · 100/wk Open console ›