CVE-2023-24016

Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: Aug 11, 2023
Updated: Aug 19, 2023
CVE: CVE-2023-24016
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-427

Affected Software
References

Software	From	Fixed in
intel / quartus_prime	-	22.1std
intel / quartus_prime	-	22.4

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00800.html

Vulnerability Database

290,020

CVE-2023-24016