CVE-2024-31407

Summary

Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software for Intel(R) Quartus(R) Prime Pro Edition Software before version 24.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected Software

VendorProductVersion RangeStatus
n/aIntel(R) High Level Synthesis Compiler software for Intel(R) Quartus(R) Prime Pro Edition Softwarebefore version 24.1affected

Weaknesses

  • escalation of privilege
  • CWE-427: Uncontrolled search path

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References