HIGH✓ PATCH🇬🇧 English

CVE-2022-21807

CVSS 7.8v3.1pub. 2022-08-18upd. 2025-05-05

Uncontrolled search path elements in the Intel(R) VTune(TM) Profiler software before version 2022.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Intel Vtune Profiler

    APP
    Intel
    < 2022.2.0
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2023-35121HIGH7.8ten sam produkt

Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) on...

CVE-2021-33062HIGH7.8ten sam produkt

Incorrect default permissions in the software installer for the Intel(R) VTune(TM) Profiler before version 202...

CVE-2021-0077HIGH7.8ten sam produkt

Insecure inherited permissions in the installer for the Intel(R) VTune(TM) Profiler before version 2021.1.1 ma...

CVE-2020-12329HIGH7.8ten sam produkt

Uncontrolled search path in the Intel(R) VTune(TM) Profiler before version 2020 Update 1 may allow an authenti...

CVE-2019-14613HIGH7.8ten sam produkt

Improper access control in driver for Intel(R) VTune(TM) Amplifier for Windows* before update 8 may allow an a...

CVE-2022-21807 — HIGH 7.8 | CVEbaza.pl