Description
Improper access control for some Intel(R) Arc™ & Iris(R) Xe graphics software before version 32.0.101.6077 may allow an authenticated user to potentially enable denial of service via local access.
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2024-45371, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2024-45371 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.
References:
- http://webappsec.pbworks.com/Insufficient-Authorization
- https://capec.mitre.org/data/definitions/19.html
- https://capec.mitre.org/data/definitions/441.html
- https://capec.mitre.org/data/definitions/478.html
- https://capec.mitre.org/data/definitions/479.html
- https://capec.mitre.org/data/definitions/502.html
- https://capec.mitre.org/data/definitions/503.html
- https://capec.mitre.org/data/definitions/536.html
- https://capec.mitre.org/data/definitions/546.html
- https://capec.mitre.org/data/definitions/550.html
- https://capec.mitre.org/data/definitions/551.html
- https://capec.mitre.org/data/definitions/552.html
- https://capec.mitre.org/data/definitions/556.html
- https://capec.mitre.org/data/definitions/558.html
- https://capec.mitre.org/data/definitions/562.html
- https://capec.mitre.org/data/definitions/563.html
- https://capec.mitre.org/data/definitions/564.html
- https://capec.mitre.org/data/definitions/578.html
- https://nvd.nist.gov/vuln/detail/CVE-2024-45371