CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-39805: Insufficient verification of data authenticity in some Intel(R) DSA software before version 23.4.39 may allow an authenticated user to potentially...

7.3 CVSS

Description

Insufficient verification of data authenticity in some Intel(R) DSA software before version 23.4.39 may allow an authenticated user to potentially enable escalation of privilege via local access.

Classification

CVE ID: CVE-2024-39805

CVSS Base Severity: HIGH

CVSS Base Score: 7.3

CVSS Vector: CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor: n/a

Product: Intel(R) DSA software

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.94% (scored less or equal to compared to others)

EPSS Date: 2025-03-13 (when was this score calculated)

References

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01030.html

Timeline