Intel(R) BigDL: Improper Access Control Leading to Privilege Escalation
CVE-2024-29085 Published on November 13, 2024

Improper access control for some BigDL software maintained by Intel(R) before version 2.5.0 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

LOW

Integrity Impact:

LOW

Availability Impact:

LOW

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2024-29085 has been classified to as an Authorization vulnerability or weakness.

Exploit Probability

EPSS

0.06%

Percentile

19.09%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Intel(R) BigDL: Improper Access Control Leading to Privilege EscalationCVE-2024-29085 Published on November 13, 2024

Vulnerability Analysis

Weakness Type

What is an Authorization Vulnerability?

Exploit Probability

Intel(R) BigDL: Improper Access Control Leading to Privilege Escalation
CVE-2024-29085 Published on November 13, 2024