CVE-2024-29079

Vulnerability

Intel Virtual RAID on CPU (VROC) software prior to version 8.6.0.3001 contains an insufficient control flow management vulnerability. The issue lies within the VROC driver or management interface, where improper validation and handling of control flow paths can be exploited by an authenticated user with local access.

Exploitation

An attacker requires local access to the system and valid authentication credentials. They must be able to interact with the VROC software, likely through its management interface or driver IOCTLs. The exploitation involves sending crafted inputs that manipulate the control flow of the VROC software, bypassing intended security checks. No specific trigger or race condition is detailed, but the attack vector is local, meaning the attacker must have a user account on the system.

Impact

Successful exploitation could allow the attacker to escalate their privileges on the affected system. The exact privilege level gained is not specified, but the description states "escalation of privilege" via local access, implying the attacker could obtain higher system privileges (potentially administrative or kernel-level) than their original user account permits.

Mitigation

Intel has released VROC software version 8.6.0.3001 to address this vulnerability. Users should update to this version or later to mitigate the issue. The advisory does not list any workarounds. Intel's security advisory INTEL-SA-01154 provides the full details and links to the updated software [1].