Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XIntel Ethernet 800 Series Controllers Driver
APPIntel< 28.3
π’
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Related vulnerabilities
CVE-2024-23497CRITICAL9.3PL βten sam produkt
Out-of-bounds write w sterowniku Linux dla Intel Ethernet 800 Series β privilege escalation
CVE-2024-23981CRITICAL9.3PL βten sam produkt
BΕΔ d wrap-around w sterowniku Intel Ethernet 800 β privilege escalation
CVE-2024-23499HIGH7.0ten sam produkt
Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Ad...
CVE-2021-45046CRITICAL9.0β KEVten sam vendor
It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-defau...
CVE-2021-44228CRITICAL10.0β KEVten sam vendor
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features u...