Multiple Intel Products Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2024-38383 CVSS:6.7

Intel Quartus Prime Pro Edition software for Windows could allow a local authenticated attacker to gain elevated privileges on the system, caused by uncontrolled search path. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to escalate privilege.

CVE-2024-38668 CVSS:6.7

Intel Quartus Prime Standard Edition software could allow a local authenticated attacker to gain elevated privileges on the system, caused by uncontrolled search path. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to escalate privilege.

CVE-2024-38387 CVSS:6.7

Intel Graphics Driver could allow a local authenticated attacker to gain elevated privileges on the system, caused by uncontrolled search path. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to escalate privilege.

Impact

Privilege Escalation

Indicators of Compromise

CVE

CVE-2024-38383
CVE-2024-38668
CVE-2024-38387

Affected Vendors

Intel

Affected Products

Intel Quartus Prime Pro Edition software for Windows
Intel QuartusPrime Standard Edition software for Windows 23.1.1
Intel Graphics Driver installers 15.40
Intel Graphics Driver installers 15.45

Remediation

Refer to INTEL Security Advisory for patch, upgrade or suggested workaround information.

CVE-2024-38383

CVE-2024-38668

CVE-2024-38387

Quasar RAT aka CinaRAT – Active IOCs

An Emerging Ducktail Infostealer – Active IOCs

Multiple Intel Products Vulnerabilities

Severity

Medium

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan