Out-of-bounds Read in Intel(r) Trace Analyzer And Collector Software

CVE-2024-22384

Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2022.0.0 published Nov 2023 may allow an authenticated user to potentially enable information disclosure via local access.

Vulnerability class: Buffer Overflow

EPSS: 0.002 (9.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 2.8 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N.

Affected products

  • N/a Intel(r) Trace Analyzer And Collector Software — versions before version 2022.0.0 published Nov 2023

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2024-22384?
CVE-2024-22384 is a low-severity vulnerability in Intel(r) Trace Analyzer And Collector Software, classified under Out-of-bounds Read. CVSS score: 2.8/10. Published 2024-05-16.
How severe is CVE-2024-22384?
Low severity. CVSS v3 base score is 2.8 out of 10.