Incorrect Execution-Assigned Permissions

CVE-2024-39286

Low

2/10

Summary

Incorrect execution-assigned permissions in the Linux kernel mode driver for the Intel(R) 800 Series Ethernet Driver before version 1.15.4 may allow an authenticated user to potentially enable information disclosure via local access.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: LOW
Availability Impact: NONE

CWE-279 - Incorrect Execution-Assigned Permissions

While it is executing, the software sets the permissions of an object in a way that violates the intended permissions that have been specified by the user.

References

Advisory Timeline

Published Feb 12, 2025

Incorrect Execution-Assigned Permissions

CVE-2024-39286

Summary

CWE-279 - Incorrect Execution-Assigned Permissions

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS