CVE-2024-36274 MEDIUM

CVE-2024-36274

Vendor N/A

Product Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack

Weakness CWE-787

Published February 12, 2025

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

6.5/10

Attack vector Adjacent

Attack complexity Low

Privileges required None

User interaction None

Confidentiality None

Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack before versions 29.1 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Key dates

02Disclosure timeline

February 12, 2025 CVE published

February 13, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-36274 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/787.html

Related vulnerabilities

Identifiers

CVE CVE-2024-36274

CWE CWE-787

CVSS 6.5 / MEDIUM

Affected versions