Out-of-bounds Read in Intel(r) Trace Analyzer And Collector Software
CVE-2024-22384
Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2022.0.0 published Nov 2023 may allow an authenticated user to potentially enable information disclosure via local access.
Vulnerability class: Buffer Overflow
EPSS: 0.002 (9.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 2.8 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N.
Affected products
- N/a Intel(r) Trace Analyzer And Collector Software — versions before version 2022.0.0 published Nov 2023
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2024-22384?
- CVE-2024-22384 is a low-severity vulnerability in Intel(r) Trace Analyzer And Collector Software, classified under Out-of-bounds Read. CVSS score: 2.8/10. Published 2024-05-16.
- How severe is CVE-2024-22384?
- Low severity. CVSS v3 base score is 2.8 out of 10.