#VU107010 Input validation error in Intel products - CVE-2024-39355

Vulnerability identifier: #VU107010

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2024-39355

CWE-ID: CWE-20

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Intel Core i9 processor 13900KS
Intel Core i9 processor 13900K
Intel Core i9 processor 13900KF
Intel Core i9 processor 13900F
Intel Core i9 processor 13900
Intel Core i9 processor 13900E
Intel Core i7 processor 13700K
Intel Core i7 processor 13700KF
Intel Core i7 processor 13790F
Intel Core i7 processor 13700F
Intel Core i7 processor 13700
Intel Core i5 processor 13600K
Intel Core i5 processor 13600KF
Intel Core i9 processor 14900
Intel Core i9 processor 14900K
Intel Core i9 processor 14900KS
Intel Core i9 processor 14900F
Intel Core i9 processor 14900KF
Intel Core i7 processor 14700
Intel Core i7 processor 14700F
Intel Core i7 processor 14700K
Intel Core i7 processor 14700KF
Intel Core i5 processor 14600K
Intel Core i5 processor 14600KF
Intel Core i9 processor 14901E
Intel Core i7 processor 14701E

Software vendor:
Intel

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper handling of physical or environmental conditions in Intel processors. A local user can perform a denial of service (DoS) attack.

Install updates from vendor's website.

• https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01228.html