22 matches found
CVE-2023-24592
The CVE-2023-24592 issue affects Intel® oneAPI Toolkits and Component software prior to version 2023.1. The root cause is a path traversal vulnerability in these components, which could allow an authenticated user to escalate privileges via local access. Affected products include Intel® oneAPI Ba...
CVE-2023-29162
The CVE-2023-29162 entry concerns Intel’s Intel® oneAPI Toolkits, specifically the Intel C++ Compiler Classic prior to 2021.8 bundled with toolkits before 2022.3.1. The issue is an improper buffer restriction that may allow a privileged local user to escalate privileges. Affected scope includes I...
CVE-2024-21784
CVE-2024-21784 concerns an uncontrolled search path in Intel IPP Cryptography software before version 2021.11, potentially enabling local escalation of privilege for an authenticated user. Intel's advisory (INTEL-SA-01114) notes affected products include Intel IPP Cryptography prior to 2021.11 an...
CVE-2023-22355
The CVE-2023-22355 issue is an Uncontrolled search path in Intel(R) oneAPI Toolkit and component software installers prior to version 4.3.0.251, potentially enabling privilege escalation for an authenticated user via local access. The Intel advisory and related records confirm the affected softwa...
CVE-2023-35121
The CVE-2023-35121 issue concerns improper access control in Intel’s oneAPI DPC++/C++ Compiler prior to 2022.2.1 for some toolkits prior to 2022.3.1, enabling potential privilege escalation via local access when authenticated. Affected software is Intel® oneAPI DPC++/C++ Compiler and related tool...
CVE-2024-21772
CVE-2024-21772 describes an uncontrolled search path in Intel�a0Advisor software prior to version 2024.0 that could allow an authenticated user to escalate privileges via local access. Connected sources (Intel advisory and Red Hat/NVD entries) confirm the affected products are Intel�a0Advisor (an...
CVE-2023-28823
CVE-2023-28823 : Uncontrolled search path exists in some Intel(R) oneAPI Toolkit installers and components before version 4.3.1.493. An authenticated user with local access may potentially escalate privileges. This vulnerability is evidenced by multiple connected sources (NVD/NCSC/OSV) referencin...
CVE-2024-23495
The CVE-2024-23495 entry concerns Intel(R) Distribution for GDB software with an on-disk permission issue: incorrect default permissions in versions before 2024.0.1 may permit an authenticated user to escalate privileges via local access. Affected component: Intel Distribution for GDB (intel-gdb)...
CVE-2024-29015
CVE-2024-29015 describes an Uncontrolled search path vulnerability in Intel VTune Profiler software prior to 2024.1 that may allow an authenticated local user to escalate privileges. Affected products include VTune Profiler before 2024.1 (and related oneAPI/Base Toolkit components). The root caus...
CVE-2023-27391
CVE-2023-27391 : Improper access control in Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to escalate privileges via local access. This is based on multiple sources (NVD, osv.dev, Red Hat, etc.) referencing the same description. No ...
CVE-2024-24973
CVE-2024-24973 describes improper input validation in Intel® Distribution for GDB prior to 2024.0.1, which may permit an authenticated user to cause a local denial-of-service. The vulnerability affects Intel Distribution for GDB software before 2024.0.1 (and is echoed in related Intel advisories)...
CVE-2024-23491
CVE-2024-23491 refers to an uncontrolled search path in Intel® Distribution for GDB software prior to 2024.0.1, potentially allowing an authenticated user with local access to escalate privileges. Intel’s advisory (INTEL-SA-01075) and related Red Hat/NVD references confirm the affected product: I...
CVE-2024-36245
CVE-2024-36245 affects Intel VTune Profiler before 2024.2.0 (and related Intel tooling). The root cause is an uncontrolled search path element, enabling a locally authenticated user to potentially escalate privileges (with HIGH impact on confidentiality, integrity, and availability per CVSS). The...
CVE-2023-30763
The CVE-2023-30763 issue concerns a heap-based overflow in Intel SoC Watch based software prior to 2021.1 that could enable privilege escalation with local access. The connected Intel advisory (INTEL-SA-00547) confirms affected products: Intel SoC Watch driver (pre-2021.1) and related components,...
CVE-2024-26025
CVE-2024-26025 concerns Intel® Advisor software prior to version 2024.1, where incorrect default permissions may allow an authenticated user to potentially escalate privileges via local access. The connected Intel advisory and vendor sources confirm affected products (Intel® Advisor software befo...
CVE-2024-28887
The CVE-2024-28887 issue is an Uncontrolled search path vulnerability in Intel® IPP software prior to 2021.11, which could allow an authenticated local user to escalate privileges. Affected products include Intel® IPP and Intel® oneAPI Base Toolkit prior to the specified versions. The Intel advis...
CVE-2024-28952
CVE-2024-28952 affects Intel IPP for Windows before 2021.12.0 and Intel oneAPI Base Toolkit before 2024.2.0. Root cause: uncontrolled search path in affected components. Impact: may allow an authenticated, local user to escalate privileges (high impact on confidentiality, integrity, and availabil...
CVE-2024-39284
CVE-2024-39284 concerns an uncontrolled search path in Intel® Advisor software before version 2024.2, potentially allowing an authenticated user to escalate privileges via local access. Connected sources (Intel advisory INTEL-SA-01208, Red Hat RH:CVE-2024-39284, and related feeds) confirm the aff...
CVE-2024-25562
Intel Distribution for GDB software contains a vulnerability (CVE-2024-25562) due to improper buffer restrictions in versions before 2024.0.1. An authenticated user could potentially cause a denial of service via local access. The issue affects Intel Distribution for GDB prior to 2024.0.1, and In...
CVE-2024-37027
Intel VTune Profiler before 2024.2.0 contains an improper input validation vulnerability (CVE-2024-37027) that may allow an authenticated local user to cause a denial of service. The issue is part of a broader set of vulnerabilities in the Intel oneAPI Base Toolkit and related components, with af...
CVE-2023-27383
CVE-2023-27383 affects Intel® oneAPI HPC Toolkit and Intel® MPI Library. The issue is a protection mechanism failure that may allow a privileged user to escalate privileges via adjacent access. Affected components/versions include the HPC Toolkit before 2023.1 and the MPI Library before 2021.9. T...
CVE-2025-20079
CVE-2025-20079 affects Intel® Advisor standalone component software (pre-2024.2) and Intel® oneAPI Base Toolkit (pre-2024.2). Root cause: Uncontrolled search path, enabling potential local escalation of privilege for an authenticated user. Affected product scope is stated in Intel advisory and Re...