CVE-2024-38383

Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition software for Windows before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: Nov 13, 2024
Updated: May 4, 2025
CVE: CVE-2024-38383
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
intel / quartus_prime	-	24.2

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01195.html

Vulnerability Database

290,020

CVE-2024-38383