CVE-2024-25562

Published: Aug 14, 2024Modified: Aug 31, 2024

5.8

Vector

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: secure@intel.com (Secondary)

Description

Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.

Affected (2)

Products: Intel: Distribution For Gdb, Oneapi Base Toolkit

2 products

Distribution For Gdb

Oneapi Base Toolkit

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Intel Distribution For Gdb	Before 2024.0.1
Intel Oneapi Base Toolkit	Before 2024.1

Related CWEs

DEPRECATED: Improper Sanitization of Custom Special Characters

This entry has been deprecated. It originally came from PLOVER, which sometimes defined "other" and "miscellaneous" categories in order to satisfy exhaustiveness requirements for taxonomies. Within the context of CWE, the use of a more abstract entry is preferred in mapping situations. CWE-75 is a more appropriate mapping.

References (1)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01075.html

Source: secure@intel.com

Vendor Advisory

Timeline

No history available yet.