DEPRECATED: Improper Sanitization of Custom Special Characters

CVE-2024-21809

Medium

6.7/10

Summary

Improper conditions check for some Intel(R) Quartus(R) Prime Lite Edition Design software before version 23.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Attack Complexity: HIGH
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-92 - DEPRECATED: Improper Sanitization of Custom Special Characters

This entry has been deprecated. It originally came from PLOVER, which sometimes defined "other" and "miscellaneous" categories in order to satisfy exhaustiveness requirements for taxonomies. Within the context of CWE, the use of a more abstract entry is preferred in mapping situations. CWE-75 is a more appropriate mapping.

References

Advisory Timeline

Published May 16, 2024

DEPRECATED: Improper Sanitization of Custom Special Characters

CVE-2024-21809

Summary

CWE-92 - DEPRECATED: Improper Sanitization of Custom Special Characters

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS