CVE-2025-20106

Uncontrolled search path in some software installer for some VTuneTM Profiler software and IntelR oneAPI Base Toolkits before version 2025.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity...

Intel oneAPI Base Toolkit < 2024.1.0 Multiple Vulnerabilities

Multiple vulnerabilities exist in Intel oneAPI Base Toolkit versions prior to 2024.1.0. See vendor advisory for more details. - Incorrect default permissions for some Intel® oneAPI Toolkit and component software installers may allow an authenticated user to potentially enable escalation of...

CVE-2025-20106

Uncontrolled search path in some software installer for some VTuneTM Profiler software and IntelR oneAPI Base Toolkits before version 2025.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity...

CVE-2025-20106

Uncontrolled search path in some software installer for some VTuneTM Profiler software and IntelR oneAPI Base Toolkits before version 2025.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity...

CVE-2025-20106

The CVE-2025-20106 entry concerns VTune Profiler software and Intel oneAPI Base Toolkit installers. The vulnerability is caused by an Uncontrolled search path in the installer, affecting Ring 3 user applications. It may enable elevation of privilege when an authenticated user with high attack com...

VTune™ Profiler Software Advisory

Summary: A potential security vulnerability in some VTune™ Profiler software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-20106 Description: Uncontrolled search path in some software install...

PT-2026-7284

Name of the Vulnerable Software and Affected Versions VTuneTM Profiler software and IntelR oneAPI Base Toolkits versions prior to 2025.0 Description An uncontrolled search path exists in the software installer for VTuneTM Profiler software and IntelR oneAPI Base Toolkits. This issue, occurring...

Intel VTune Profiler和Intel oneAPI Toolkits 代码问题漏洞

Intel VTune Profiler and Intel oneAPI Toolkits are products of Intel Corporation, a US company. Intel VTune Profiler is a performance testing tool designed to optimize software. This software can be used for performance testing in IoT embedded applications, media software, Java applications, and...

CVE-2021-33071

Incorrect default permissions in the installer for the IntelR oneAPI Rendering Toolkit before version 2021.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-29242

Improper access control for IntelR oneAPI Toolkits before version 2021.1 Beta 10 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26076

Uncontrolled search path element in the IntelR oneAPI Deep Neural Network oneDNN before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26032

Uncontrolled search path element in the IntelR Distribution for Python programming language before version 2022.1 for IntelR oneAPI Toolkits may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26421

Uncontrolled search path element in the IntelR oneAPI DPC++/C++ Compiler Runtime before version 2022.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26052

Uncontrolled search path element in the IntelR MPI Library before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26425

Uncontrolled search path element in the IntelR oneAPI Collective Communications Library oneCCL before version 2021.6 for IntelR oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26512

Uncontrolled search path element in the IntelR FPGA Add-on for IntelR oneAPI Base Toolkit before version 2022.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26062

Uncontrolled search path element in the IntelR Trace Analyzer and Collector before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-39365

Uncontrolled search path for the FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler software for Windows before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-26843

Insufficient visual distinction of homoglyphs presented to user in the IntelR oneAPI DPC++/C++ Compiler before version 2022.1 for IntelR oneAPI Toolkits before version 2022.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access...

Intel HPC Toolkit Privilege Escalation Vulnerability (INTEL-SA-01386)

Intel® oneAPI HPC Toolkit is installed on the remote Windows host. It is, therefore, affected by an escalation of privilege vulnerability: - Uncontrolled search path for the Intel® oneAPI HPC Toolkit and 2025.2: User Applications may allow an escalation of privilege. Unprivileged software...