10 matches found
CVE-2018-12155
CVE-2018-12155 affects Intel IPP prior to 2019 update1. Data leakage via cryptographic libraries could allow an authenticated local user to disclose information. Public documentation across multiple sources confirms: vulnerable component is Intel IPP (pre-2019 update1), and the root cause is data...
CVE-2023-29162
The CVE-2023-29162 entry concerns Intel’s Intel® oneAPI Toolkits, specifically the Intel C++ Compiler Classic prior to 2021.8 bundled with toolkits before 2022.3.1. The issue is an improper buffer restriction that may allow a privileged local user to escalate privileges. Affected scope includes I...
CVE-2023-22355
The CVE-2023-22355 issue is an Uncontrolled search path in Intel(R) oneAPI Toolkit and component software installers prior to version 4.3.0.251, potentially enabling privilege escalation for an authenticated user via local access. The Intel advisory and related records confirm the affected softwa...
CVE-2023-35121
The CVE-2023-35121 issue concerns improper access control in Intel’s oneAPI DPC++/C++ Compiler prior to 2022.2.1 for some toolkits prior to 2022.3.1, enabling potential privilege escalation via local access when authenticated. Affected software is Intel® oneAPI DPC++/C++ Compiler and related tool...
CVE-2023-27391
CVE-2023-27391 : Improper access control in Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to escalate privileges via local access. This is based on multiple sources (NVD, osv.dev, Red Hat, etc.) referencing the same description. No ...
CVE-2023-28823
CVE-2023-28823 : Uncontrolled search path exists in some Intel(R) oneAPI Toolkit installers and components before version 4.3.1.493. An authenticated user with local access may potentially escalate privileges. This vulnerability is evidenced by multiple connected sources (NVD/NCSC/OSV) referencin...
CVE-2017-5682
CVE-2017-5682 refers to a local privilege escalation in the PSET Application Install wrapper used by multiple Intel developer tools (Intel Parallel Studio XE, System Studio, VTune Amplifier, Inspector, Advisor, MPI Library, Trace Analyzer and Collector, MKL, IPP, DAAL, TBLS, and related cryptogra...
CVE-2024-28887
The CVE-2024-28887 issue is an Uncontrolled search path vulnerability in Intel® IPP software prior to 2021.11, which could allow an authenticated local user to escalate privileges. Affected products include Intel® IPP and Intel® oneAPI Base Toolkit prior to the specified versions. The Intel advis...
CVE-2024-28952
CVE-2024-28952 affects Intel IPP for Windows before 2021.12.0 and Intel oneAPI Base Toolkit before 2024.2.0. Root cause: uncontrolled search path in affected components. Impact: may allow an authenticated, local user to escalate privileges (high impact on confidentiality, integrity, and availabil...
CVE-2016-8100
Intel IPP Cryptography before 9.0.4 is vulnerable to a local-side-channel attack that enables discovery of RSA private keys. Affected product: Intel IPP Cryptography (part of IPP) prior to version 9.0.4. Root cause: information leaked through a side channel allowing a local attacker to recover th...