Buffer overflow in Intel(r) 800 Series Ethernet Driver For Adapter Complete Pack

CVE-2024-36274

Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack before versions 29.1 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Vulnerability class: Buffer Overflow

EPSS: 0.003 (26.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

  • N/a Intel(r) 800 Series Ethernet Driver For Adapter Complete Pack — versions See references

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2024-36274?
CVE-2024-36274 is a medium-severity vulnerability in Intel(r) 800 Series Ethernet Driver For Adapter Complete Pack, classified under Out-of-bounds Write. CVSS score: 6.5/10. Published 2025-02-12.
How severe is CVE-2024-36274?
Medium severity. CVSS v3 base score is 6.5 out of 10.