Intel Distribution For Python vulnerabilities

CVE-2023-35121 [HIGH] CWE-284 CVE-2023-35121: Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some I Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) oneAPI Toolkits before version 2022.3.1 may allow authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-29162 [MEDIUM] CWE-276 CVE-2023-29162: Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) on Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2023-22355 [MEDIUM] CWE-427 CVE-2023-22355: Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before ve Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.0.251 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-26032 [MEDIUM] CWE-427 CVE-2022-26032: Uncontrolled search path element in the Intel(R) Distribution for Python programming language before Uncontrolled search path element in the Intel(R) Distribution for Python programming language before version 2022.1 for Intel(R) oneAPI Toolkits may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-28696 [HIGH] CWE-427 CVE-2022-28696: Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 may allow a Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2018-12175 [HIGH] CWE-276 CVE-2018-12175: Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may allow Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may allow an unprivileged user to escalate privileges via local access.

CVE-2018-3650 [HIGH] CWE-20 CVE-2018-3650: Insufficient Input Validation in Bleach module in INTEL Distribution for Python versions prior to ID Insufficient Input Validation in Bleach module in INTEL Distribution for Python versions prior to IDP 2018 Update 2 allows unprivileged user to bypass URI sanitization via local vector.