Intel Trace Analyzer And Collector vulnerabilities

CVE-2024-28172 [MEDIUM] CWE-427 CVE-2024-28172: Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022 Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-35121 [HIGH] CWE-284 CVE-2023-35121: Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some I Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) oneAPI Toolkits before version 2022.3.1 may allow authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-29162 [MEDIUM] CWE-276 CVE-2023-29162: Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) on Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2023-28823 [MEDIUM] CWE-427 CVE-2023-28823: Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before ve Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-27391 [MEDIUM] CWE-284 CVE-2023-27391: Improper access control in some Intel(R) oneAPI Toolkit and component software installers before ver Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2023-31197 [MEDIUM] CWE-427 CVE-2023-31197: Uncontrolled search path in the Intel(R) Trace Analyzer and Collector before version 2020 update 3 m Uncontrolled search path in the Intel(R) Trace Analyzer and Collector before version 2020 update 3 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-23580 [MEDIUM] CWE-121 CVE-2023-23580: Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2 Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege via local access.

CVE-2023-23569 [HIGH] CWE-121 CVE-2023-23569: Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2 Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-22355 [MEDIUM] CWE-427 CVE-2023-22355: Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before ve Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.0.251 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2023-23910 [LOW] CWE-787 CVE-2023-23910: Out-of-bounds write for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 Out-of-bounds write for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege via local access.

CVE-2023-23909 [LOW] CWE-125 CVE-2023-23909: Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 p Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-42878 [LOW] CWE-395 CVE-2022-42878: Null pointer dereference for some Intel(R) Trace Analyzer and Collector software before version 2021 Null pointer dereference for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-34864 [MEDIUM] CWE-125 CVE-2022-34864: Out-of-bounds read in the Intel(R) Trace Analyzer and Collector software before version 2021.5 may a Out-of-bounds read in the Intel(R) Trace Analyzer and Collector software before version 2021.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-34843 [MEDIUM] CWE-190 CVE-2022-34843: Integer overflow in the Intel(R) Trace Analyzer and Collector software before version 2021.5 may all Integer overflow in the Intel(R) Trace Analyzer and Collector software before version 2021.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-26062 [MEDIUM] CWE-427 CVE-2022-26062: Uncontrolled search path element in the Intel(R) Trace Analyzer and Collector before version 2021.6 Uncontrolled search path element in the Intel(R) Trace Analyzer and Collector before version 2021.6 for Intel(R) oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-32575 [MEDIUM] CWE-787 CVE-2022-32575: Out-of-bounds write in the Intel(R) Trace Analyzer and Collector software before version 2021.5 may Out-of-bounds write in the Intel(R) Trace Analyzer and Collector software before version 2021.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-21226 [MEDIUM] CWE-125 CVE-2022-21226: Out-of-bounds read in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow an a Out-of-bounds read in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-21218 [MEDIUM] CWE-755 CVE-2022-21218: Uncaught exception in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow an a Uncaught exception in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-21133 [MEDIUM] CWE-125 CVE-2022-21133: Out-of-bounds read in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow an a Out-of-bounds read in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2022-21156 [MEDIUM] CWE-824 CVE-2022-21156: Access of uninitialized pointer in the Intel(R) Trace Analyzer and Collector before version 2021.5 m Access of uninitialized pointer in the Intel(R) Trace Analyzer and Collector before version 2021.5 may allow an authenticated user to potentially enable denial of service via local access.