Intel Oneapi Base Toolkit vulnerabilities
23 known vulnerabilities affecting intel/oneapi_base_toolkit.
Total CVEs
23
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH6MEDIUM16LOW1
Vulnerabilities
Page 1 of 2
CVE-2025-20079MEDIUMCVSS 5.4fixed in 2024.22025-05-13
CVE-2025-20079 [MEDIUM] CWE-427 CVE-2025-20079: Uncontrolled search path for some Intel(R) Advisor software may allow an authenticated user to poten
Uncontrolled search path for some Intel(R) Advisor software may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-39284MEDIUMCVSS 5.4fixed in 2024.22025-02-12
CVE-2024-39284 [MEDIUM] CWE-427 CVE-2024-39284: Uncontrolled search path for some Intel(R) Advisor software before version 2024.2 may allow an authe
Uncontrolled search path for some Intel(R) Advisor software before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-28952MEDIUMCVSS 5.4fixed in 2024.22024-11-13
CVE-2024-28952 [MEDIUM] CWE-427 CVE-2024-28952: Uncontrolled search path for some Intel(R) IPP software for Windows before version 2021.12.0 may all
Uncontrolled search path for some Intel(R) IPP software for Windows before version 2021.12.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-37027MEDIUMCVSS 5.2fixed in 2024.22024-11-13
CVE-2024-37027 [MEDIUM] CWE-20 CVE-2024-37027: Improper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may a
Improper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable denial of service via local access.
nvd
CVE-2024-36245MEDIUMCVSS 5.4fixed in 2024.22024-11-13
CVE-2024-36245 [MEDIUM] CWE-427 CVE-2024-36245: Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.2.
Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-23495MEDIUMCVSS 5.4fixed in 2024.12024-08-14
CVE-2024-23495 [MEDIUM] CWE-276 CVE-2024-23495: Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1
Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-21784MEDIUMCVSS 5.4fixed in 2024.12024-08-14
CVE-2024-21784 [MEDIUM] CWE-427 CVE-2024-21784: Uncontrolled search path for some Intel(R) IPP Cryptography software before version 2021.11 may allo
Uncontrolled search path for some Intel(R) IPP Cryptography software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-28887MEDIUMCVSS 5.4fixed in 2024.12024-08-14
CVE-2024-28887 [MEDIUM] CWE-427 CVE-2024-28887: Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an authentic
Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-26025MEDIUMCVSS 5.4fixed in 2024.12024-08-14
CVE-2024-26025 [MEDIUM] CWE-276 CVE-2024-26025: Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may allow an
Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-25562MEDIUMCVSS 5.8fixed in 2024.12024-08-14
CVE-2024-25562 [MEDIUM] CWE-92 CVE-2024-25562: Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1
Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.
nvd
CVE-2024-23491MEDIUMCVSS 5.4fixed in 2024.12024-08-14
CVE-2024-23491 [MEDIUM] CWE-427 CVE-2024-23491: Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may
Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-29015MEDIUMCVSS 5.4fixed in 2024.12024-08-14
CVE-2024-29015 [MEDIUM] CWE-427 CVE-2024-29015: Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may all
Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2024-24973LOWCVSS 1.0fixed in 2024.12024-08-14
CVE-2024-24973 [LOW] CWE-20 CVE-2024-24973: Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 ma
Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.
nvd
CVE-2024-21772HIGHCVSS 7.8fixed in 2024.02024-05-16
CVE-2024-21772 [MEDIUM] CWE-427 CVE-2024-21772: Uncontrolled search path in some Intel(R) Advisor software before version 2024.0 may allow an authen
Uncontrolled search path in some Intel(R) Advisor software before version 2024.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-35121HIGHCVSS 7.8fixed in 2023.2v2023.22024-02-14
CVE-2023-35121 [HIGH] CWE-284 CVE-2023-35121: Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some I
Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) oneAPI Toolkits before version 2022.3.1 may allow authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-29162MEDIUMCVSS 6.0fixed in 2023.2v2023.22024-02-14
CVE-2023-29162 [MEDIUM] CWE-276 CVE-2023-29162: Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) on
Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-24592HIGHCVSS 7.8fixed in 2023.12023-11-14
CVE-2023-24592 [HIGH] CWE-22 CVE-2023-24592: Path traversal in the some Intel(R) oneAPI Toolkits and Component software before version 2023.1 may
Path traversal in the some Intel(R) oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-27383MEDIUMCVSS 6.8fixed in 2023.12023-11-14
CVE-2023-27383 [MEDIUM] CWE-693 CVE-2023-27383: Protection mechanism failure in some Intel(R) oneAPI HPC Toolkit 2023.1 and Intel(R)MPI Library soft
Protection mechanism failure in some Intel(R) oneAPI HPC Toolkit 2023.1 and Intel(R)MPI Library software before version 2021.9 may allow a privileged user to potentially enable escalation of privilege via adjacent access.
nvd
CVE-2023-28823HIGHCVSS 7.3fixed in 2023.12023-08-11
CVE-2023-28823 [MEDIUM] CWE-427 CVE-2023-28823: Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before ve
Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2023-27391MEDIUMCVSS 6.7fixed in 2023.12023-08-11
CVE-2023-27391 [MEDIUM] CWE-284 CVE-2023-27391: Improper access control in some Intel(R) oneAPI Toolkit and component software installers before ver
Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
1 / 2Next →