CVE-2024-21799

HIGH

Published November 13, 2024

Path traversal for some Intel(R) Extension for Transformers software before version 1.5 may allow an authenticated user to potentially enable escalation of privilege via local...

Full analysis pending. Showing NVD description excerpt.

Severity & Risk

CVSS 3.1

7.1 / 10

EPSS

N/A

KEV Status

Not in KEV

Sophistication

N/A

Recommended Action

No patch available

Monitor for updates. Consider compensating controls or temporary mitigations.

Compliance Impact

Compliance analysis pending. Sign in for full compliance mapping when available.

Technical Details

NVD Description

Path traversal for some Intel(R) Extension for Transformers software before version 1.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

Weaknesses (CWE)

CWE-22

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

References

intel.com/content/www/us/en/security-center/advisory/intel-sa-01190.html

Timeline

Published

November 13, 2024

Last Modified

November 15, 2024

First Seen

November 13, 2024

Back to Threat Feed