CVE-2024-36294
EUVD-2024-3602013.11.2024, 21:15
Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| intel | driver_\&_support_assistant | 𝑥 < 24.3.26.8 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| intel | dsa_software | 𝑥 < 24.3.26.8 | ADP |
Common Weakness Enumeration
- CWE-277 - Insecure Inherited PermissionsA product defines a set of insecure permissions that are inherited by objects that are created by the program.
- CWE-732 - Incorrect Permission Assignment for Critical ResourceThe product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.