CVE-2020-24485

Improper conditions check in the Intel(R) FPGA OPAE Driver for Linux before kernel version 4.17 may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: Feb 17, 2021
Updated: Apr 14, 2023
CVE: CVE-2020-24485
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Low
Score: 4.4
AV:L/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-427

Affected Software
References

Software	From	Fixed in
intel / trace_analyzer_and_collector	update2	update2.x
intel / trace_analyzer_and_collector	update3	update3.x
intel / trace_analyzer_and_collector	-	2020
intel / trace_analyzer_and_collector	update1	update1.x

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00440.html

Vulnerability Database

289,871

CVE-2020-24485