CVE-2023-24478

Summary

Use of insufficiently random values for some Intel Agilex(R) software included as part of Intel(R) Quartus(R) Prime Pro Edition for linux before version 22.4 may allow an authenticated user to potentially enable information disclosure via local access.

Affected Software

VendorProductVersion RangeStatus
n/aIntel Agilex(R) software included as part of Intel(R) Quartus(R) Prime Pro Edition for linuxbefore version 22.4affected

Weaknesses

  • information disclosure
  • CWE-330: Use of insufficiently random values

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References