CVE-2022-25864

Vulnerability

An uncontrolled search path vulnerability exists in Intel(R) oneMKL software versions prior to 2022.0 [1]. This issue occurs when the software loads dynamic link libraries (DLLs) from untrusted directories due to an insecure search order, potentially allowing an attacker to inject a malicious DLL into the application's execution context.

Exploitation

To exploit this vulnerability, an attacker must have local access to the system and be authenticated. The attacker can place a specially crafted DLL in a directory that is searched by the oneMKL software before the intended system directory. When the software loads the DLL, the malicious code executes with the privileges of the user running the application [1].

Impact

Successful exploitation could allow an authenticated attacker to escalate privileges, potentially gaining the same level of access as the user running the affected software. This could lead to unauthorized actions such as data modification, disclosure, or further system compromise [1].

Mitigation

Intel recommends updating to Intel(R) oneMKL version 2022.0 or later, which addresses the uncontrolled search path issue [1]. No workarounds are provided in the advisory. The vulnerability is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog as of the publication date.