{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-39286","assignerOrgId":"6dda929c-bb53-4a77-a76d-48e79601a1ce","state":"PUBLISHED","assignerShortName":"intel","dateReserved":"2024-08-15T03:00:10.637Z","datePublished":"2025-02-12T21:18:59.246Z","dateUpdated":"2025-08-27T21:20:11.841Z"},"containers":{"cna":{"providerMetadata":{"orgId":"6dda929c-bb53-4a77-a76d-48e79601a1ce","shortName":"intel","dateUpdated":"2025-02-12T21:18:59.246Z"},"problemTypes":[{"descriptions":[{"lang":"en","description":"Information Disclosure"},{"lang":"en","description":"Incorrect Execution-Assigned Permissions","cweId":"CWE-279","type":"CWE"}]}],"affected":[{"vendor":"n/a","product":"Intel(R) 800 Series Ethernet Driver","versions":[{"version":"before version 1.15.4","status":"affected"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"Incorrect execution-assigned permissions in the Linux kernel mode driver for the Intel(R) 800 Series Ethernet Driver before version 1.15.4 may allow an authenticated user to potentially enable information disclosure via local access."}],"references":[{"name":"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01236.html","url":"https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01236.html"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"cvssV4_0":{"version":"4.0","baseScore":2,"baseSeverity":"LOW","vectorString":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE"}}]},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-02-13T15:16:13.373222Z","id":"CVE-2024-39286","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-08-27T21:20:11.841Z"}}]}}