CVE-2024-38668
First published: Wed Nov 13 2024(Updated: )
Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Intel Quartus Prime Software | <23.1.1 | |
| Microsoft Windows | ||
| Intel Quartus Prime Standard Edition Design Software | <23.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-38668?
CVE-2024-38668 is a high-severity vulnerability due to the potential for privilege escalation.
How do I fix CVE-2024-38668?
To fix CVE-2024-38668, update your Intel Quartus Prime Standard Edition software to version 23.1.1 or later.
Who is affected by CVE-2024-38668?
CVE-2024-38668 affects users of Intel Quartus Prime Standard Edition software on Windows prior to version 23.1.1.
What type of attack can CVE-2024-38668 enable?
CVE-2024-38668 can enable local privilege escalation for authenticated users.
Is CVE-2024-38668 a remote vulnerability?
No, CVE-2024-38668 is not a remote vulnerability; it requires local access by an authenticated user.
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- vendor/intel
- canonical/intel quartus prime software
- vendor/microsoft
- canonical/microsoft windows
- canonical/intel quartus prime standard edition design software