12 matches found
CVE-2023-24592
The CVE-2023-24592 issue affects Intel® oneAPI Toolkits and Component software prior to version 2023.1. The root cause is a path traversal vulnerability in these components, which could allow an authenticated user to escalate privileges via local access. Affected products include Intel® oneAPI Ba...
CVE-2023-22355
The CVE-2023-22355 issue is an Uncontrolled search path in Intel(R) oneAPI Toolkit and component software installers prior to version 4.3.0.251, potentially enabling privilege escalation for an authenticated user via local access. The Intel advisory and related records confirm the affected softwa...
CVE-2024-28876
CVE-2024-28876 affects Intel® MPI Library prior to version 2021.12 and can enable privilege escalation via an uncontrolled search path when run with local access by an authenticated user. The Intel advisory (INTEL-SA-01115) documents the vulnerability and recommends updating to Intel® MPI Library...
CVE-2023-28823
CVE-2023-28823 : Uncontrolled search path exists in some Intel(R) oneAPI Toolkit installers and components before version 4.3.1.493. An authenticated user with local access may potentially escalate privileges. This vulnerability is evidenced by multiple connected sources (NVD/NCSC/OSV) referencin...
CVE-2023-27391
CVE-2023-27391 : Improper access control in Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to escalate privileges via local access. This is based on multiple sources (NVD, osv.dev, Red Hat, etc.) referencing the same description. No ...
CVE-2024-28172
Intel® Trace Analyzer and Collector software prior to version 2022.1 is affected by an uncontrolled search path vulnerability that may allow an authenticated user to escalate privileges via local access. Intel’s advisory (Intel® SA-01117) states affected products include Intel® Trace Analyzer and...
CVE-2023-27383
CVE-2023-27383 affects Intel® oneAPI HPC Toolkit and Intel® MPI Library. The issue is a protection mechanism failure that may allow a privileged user to escalate privileges via adjacent access. Affected components/versions include the HPC Toolkit before 2023.1 and the MPI Library before 2021.9. T...
CVE-2022-42878
CVE-2022-42878 affects Intel® Trace Analyzer and Collector software prior to 2021.8.0 (and related Intel HPC Toolkit components). Root cause is a null pointer dereference that could allow an authenticated local user to disclose information. Exploitation details are not provided in the supplied do...
CVE-2023-23580
Intel® Trace Analyzer and Collector software is affected by a stack-based buffer overflow in the component prior to version 2021.8.0. The vulnerability could allow an authenticated, locally located user to escalate privileges. Affected product: Intel Trace Analyzer and Collector (pre-2021.8.0). R...
CVE-2023-23909
CVE-2023-23909 describes an out-of-bounds read in Intel® Trace Analyzer and Collector software prior to version 2021.8.0, which may allow an authenticated attacker with local access to disclose information. The issue affects Intel Trace Analyzer and Collector (and related components) and is mitig...
CVE-2023-23910
CVE-2023-23910 affects Intel Trace Analyzer and Collector software prior to 2021.8.0. The issue is an out-of-bounds write that may allow an authenticated local user to escalate privileges. The NVD metric shows CVSSv3.1 base score 7.8 (HIGH) with LOCAL attacker, HIGH confidentiality/integrity/avai...
CVE-2023-23569
CVE-2023-23569 concerns a stack-based buffer overflow in Intel(R) Trace Analyzer and Collector software prior to version 2021.8.0. An authenticated, local attacker could potentially escalate privileges. The issue affects Intel Trace Analyzer and Collector (and is noted by Intel advisory INTEL-SA-...