CVE-2024-38383
First published: Wed Nov 13 2024(Updated: )
Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition software for Windows before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Quartus Prime Pro Edition Design Software | <24.2 | |
| All of | ||
| Intel Quartus Prime Software | <24.2 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-38383?
CVE-2024-38383 is classified as a medium severity vulnerability.
How do I fix CVE-2024-38383?
To fix CVE-2024-38383, update to Intel Quartus Prime Pro Edition version 24.2 or later.
Who is impacted by CVE-2024-38383?
Authenticated users of Intel Quartus Prime Pro Edition software prior to version 24.2 are impacted by CVE-2024-38383.
What type of vulnerability is CVE-2024-38383?
CVE-2024-38383 is an escalated privilege vulnerability due to an uncontrolled search path.
Can CVE-2024-38383 be exploited remotely?
No, CVE-2024-38383 requires local access for an authenticated user to exploit.
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/event
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- vendor/intel
- canonical/intel quartus prime pro edition design software
- canonical/intel quartus prime software
- vendor/microsoft
- canonical/microsoft windows