CVE-2024-28169 MEDIUM

CVE-2024-28169

Vendor N/A
Product BigDL software maintained by Intel(R)
Weakness CWE-319 · Cleartext transmission
Published November 13, 2024
Last update November 14, 2024

CVSS base score

5.4/10
Attack vector Adjacent
Attack complexity High
Privileges required Low
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H

What the vulnerability does

01Description

Cleartext transmission of sensitive information for some BigDL software maintained by Intel(R) before version 2.5.0 may allow an authenticated user to potentially enable denial of service via adjacent access.

Key dates

02Disclosure timeline

November 13, 2024 CVE published
November 14, 2024 Record updated