← back
CVE-2024-34022

CVE-2024-34022

CVSS 5.4 MEDIUMEPSS 0.2%CWE-284
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.4EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
13 Nov 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Improper Access Control in some Thunderbolt(TM) Share software before version 1.0.49.9 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N