Vendor CVEs
Intel
All CVEs
2,130 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-31153 | 0.00 | — | 0.00 | Feb 12, 2025 | Improper input validation for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable denial of service via local access. | |||
| CVE-2024-29223 | 0.00 | — | 0.00 | Feb 12, 2025 | Uncontrolled search path for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-31858 | 0.00 | — | 0.00 | Feb 12, 2025 | Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-53048 | 0.00 | — | 0.00 | Nov 19, 2024 | In the Linux kernel, the following vulnerability has been resolved: ice: fix crash on probe for DPLL enabled E810 LOM The E810 Lan On Motherboard (LOM) design is vendor specific. Intel provides the reference design, but it is up to vendor on the final product design. For some… | |||
| CVE-2024-32483 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper access control for some Intel(R) EMA software before version 1.13.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-36294 | 0.00 | — | 0.00 | Nov 13, 2024 | Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-36488 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper Access Control in some Intel(R) DSA before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-38383 | 0.00 | — | 0.00 | Nov 13, 2024 | Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition software for Windows before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-38668 | 0.00 | — | 0.00 | Nov 13, 2024 | Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-37027 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable denial of service via local access. | |||
| CVE-2024-36245 | 0.00 | — | 0.00 | Nov 13, 2024 | Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-36482 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-36276 | 0.00 | — | 0.00 | Nov 13, 2024 | Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-36253 | 0.00 | — | 0.00 | Nov 13, 2024 | Uncontrolled search path in the Intel(R) SDP Tool for Windows software all version may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-35201 | 0.00 | — | 0.00 | Nov 13, 2024 | Incorrect default permissions in the Intel(R) SDP Tool for Windows software all versions may allow an authenticated user to enable escalation of privilege via local access. | |||
| CVE-2024-39609 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-41167 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-32485 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper Input Validation in some Intel(R) VROC software before version 8.6.0.2003 may allow an authenticated user to potentially enable denial of service via local access. | |||
| CVE-2024-29079 | 0.00 | — | 0.00 | Nov 13, 2024 | Insufficient control flow management in some Intel(R) VROC software before version 8.6.0.3001 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-28952 | 0.00 | — | 0.00 | Nov 13, 2024 | Uncontrolled search path for some Intel(R) IPP software for Windows before version 2021.12.0 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-25563 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclosure via local access. | |||
| CVE-2024-28049 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before version 23.40 may allow an unauthenticated user to enable denial of service via adjacent access. | |||
| CVE-2024-23198 | 0.00 | — | 0.00 | Nov 13, 2024 | Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi products before version 23.40 may allow an unauthenticated user to enable denial of service via adjacent access. | |||
| CVE-2024-45164 | 0.00 | — | 0.00 | Nov 4, 2024 | Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and Apps Portal before 19.2.0.3 or 19.2.0.20240814, has incorrect authorization controls for the Admin functionality on the ThreatAvert… | |||
| CVE-2024-28170 | 0.00 | — | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access. | |||
| CVE-2024-36261 | 0.00 | — | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access. | |||
| CVE-2024-36247 | 0.00 | — | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access. | |||
| CVE-2024-32666 | 0.00 | — | 0.00 | Sep 16, 2024 | NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access. | |||
| CVE-2024-34545 | 0.00 | — | 0.00 | Sep 16, 2024 | Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access. | |||
| CVE-2024-33848 | 0.00 | — | 0.00 | Sep 16, 2024 | Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access. | |||
| CVE-2024-32940 | 0.00 | — | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access. | |||
| CVE-2024-34153 | 0.00 | — | 0.00 | Sep 16, 2024 | Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-34543 | 0.00 | — | 0.00 | Sep 16, 2024 | Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2022-48889 | 0.00 | — | 0.00 | Aug 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof-nau8825: fix module alias overflow The maximum name length for a platform_device_id entry is 20 characters including the trailing NUL byte. The sof_nau8825.c file exceeds that, which causes an… | |||
| CVE-2024-23499 | 0.00 | — | 0.01 | Aug 14, 2024 | Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an unauthenticated user to potentially enable denial of service via network access. | |||
| CVE-2024-24986 | 0.00 | — | 0.00 | Aug 14, 2024 | Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-23981 | 0.00 | — | 0.00 | Aug 14, 2024 | Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-23497 | 0.00 | — | 0.00 | Aug 14, 2024 | Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-39283 | 0.00 | — | 0.00 | Aug 14, 2024 | Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-34163 | 0.00 | — | 0.00 | Aug 14, 2024 | Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via local access. | |||
| CVE-2024-21801 | 0.00 | — | 0.00 | Aug 14, 2024 | Insufficient control flow management in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable denial of service via local access. | |||
| CVE-2024-23495 | 0.00 | — | 0.00 | Aug 14, 2024 | Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-24973 | 0.00 | — | 0.00 | Aug 14, 2024 | Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access. | |||
| CVE-2024-23491 | 0.00 | — | 0.00 | Aug 14, 2024 | Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-25562 | 0.00 | — | 0.00 | Aug 14, 2024 | Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access. | |||
| CVE-2024-25576 | 0.00 | — | 0.00 | Aug 14, 2024 | improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow a privileged user to enable escalation of privilege via local access. | |||
| CVE-2024-25561 | 0.00 | — | 0.00 | Aug 14, 2024 | Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-24580 | 0.00 | — | 0.00 | Aug 14, 2024 | Improper conditions check in some Intel(R) Data Center GPU Max Series 1100 and 1550 products may allow a privileged user to potentially enable denial of service via local access. | |||
| CVE-2024-23909 | 0.00 | — | 0.00 | Aug 14, 2024 | Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2024-28046 | 0.00 | — | 0.00 | Aug 14, 2024 | Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access. |
- CVE-2024-31153Feb 12, 2025risk 0.00cvss —epss 0.00
Improper input validation for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2024-29223Feb 12, 2025risk 0.00cvss —epss 0.00
Uncontrolled search path for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-31858Feb 12, 2025risk 0.00cvss —epss 0.00
Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-53048Nov 19, 2024risk 0.00cvss —epss 0.00
In the Linux kernel, the following vulnerability has been resolved: ice: fix crash on probe for DPLL enabled E810 LOM The E810 Lan On Motherboard (LOM) design is vendor specific. Intel provides the reference design, but it is up to vendor on the final product design. For some…
- CVE-2024-32483Nov 13, 2024risk 0.00cvss —epss 0.00
Improper access control for some Intel(R) EMA software before version 1.13.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-36294Nov 13, 2024risk 0.00cvss —epss 0.00
Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-36488Nov 13, 2024risk 0.00cvss —epss 0.00
Improper Access Control in some Intel(R) DSA before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-38383Nov 13, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition software for Windows before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-38668Nov 13, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-37027Nov 13, 2024risk 0.00cvss —epss 0.00
Improper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2024-36245Nov 13, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-36482Nov 13, 2024risk 0.00cvss —epss 0.00
Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2024-36276Nov 13, 2024risk 0.00cvss —epss 0.00
Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-36253Nov 13, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path in the Intel(R) SDP Tool for Windows software all version may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-35201Nov 13, 2024risk 0.00cvss —epss 0.00
Incorrect default permissions in the Intel(R) SDP Tool for Windows software all versions may allow an authenticated user to enable escalation of privilege via local access.
- CVE-2024-39609Nov 13, 2024risk 0.00cvss —epss 0.00
Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2024-41167Nov 13, 2024risk 0.00cvss —epss 0.00
Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2024-32485Nov 13, 2024risk 0.00cvss —epss 0.00
Improper Input Validation in some Intel(R) VROC software before version 8.6.0.2003 may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2024-29079Nov 13, 2024risk 0.00cvss —epss 0.00
Insufficient control flow management in some Intel(R) VROC software before version 8.6.0.3001 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-28952Nov 13, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path for some Intel(R) IPP software for Windows before version 2021.12.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-25563Nov 13, 2024risk 0.00cvss —epss 0.00
Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2024-28049Nov 13, 2024risk 0.00cvss —epss 0.00
Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before version 23.40 may allow an unauthenticated user to enable denial of service via adjacent access.
- CVE-2024-23198Nov 13, 2024risk 0.00cvss —epss 0.00
Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi products before version 23.40 may allow an unauthenticated user to enable denial of service via adjacent access.
- CVE-2024-45164Nov 4, 2024risk 0.00cvss —epss 0.00
Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and Apps Portal before 19.2.0.3 or 19.2.0.20240814, has incorrect authorization controls for the Admin functionality on the ThreatAvert…
- CVE-2024-28170Sep 16, 2024risk 0.00cvss —epss 0.00
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2024-36261Sep 16, 2024risk 0.00cvss —epss 0.00
Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
- CVE-2024-36247Sep 16, 2024risk 0.00cvss —epss 0.00
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
- CVE-2024-32666Sep 16, 2024risk 0.00cvss —epss 0.00
NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2024-34545Sep 16, 2024risk 0.00cvss —epss 0.00
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access.
- CVE-2024-33848Sep 16, 2024risk 0.00cvss —epss 0.00
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2024-32940Sep 16, 2024risk 0.00cvss —epss 0.00
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
- CVE-2024-34153Sep 16, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-34543Sep 16, 2024risk 0.00cvss —epss 0.00
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2022-48889Aug 21, 2024risk 0.00cvss —epss 0.00
In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof-nau8825: fix module alias overflow The maximum name length for a platform_device_id entry is 20 characters including the trailing NUL byte. The sof_nau8825.c file exceeds that, which causes an…
- CVE-2024-23499Aug 14, 2024risk 0.00cvss —epss 0.01
Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an unauthenticated user to potentially enable denial of service via network access.
- CVE-2024-24986Aug 14, 2024risk 0.00cvss —epss 0.00
Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-23981Aug 14, 2024risk 0.00cvss —epss 0.00
Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-23497Aug 14, 2024risk 0.00cvss —epss 0.00
Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-39283Aug 14, 2024risk 0.00cvss —epss 0.00
Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-34163Aug 14, 2024risk 0.00cvss —epss 0.00
Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via local access.
- CVE-2024-21801Aug 14, 2024risk 0.00cvss —epss 0.00
Insufficient control flow management in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable denial of service via local access.
- CVE-2024-23495Aug 14, 2024risk 0.00cvss —epss 0.00
Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-24973Aug 14, 2024risk 0.00cvss —epss 0.00
Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2024-23491Aug 14, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-25562Aug 14, 2024risk 0.00cvss —epss 0.00
Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2024-25576Aug 14, 2024risk 0.00cvss —epss 0.00
improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow a privileged user to enable escalation of privilege via local access.
- CVE-2024-25561Aug 14, 2024risk 0.00cvss —epss 0.00
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-24580Aug 14, 2024risk 0.00cvss —epss 0.00
Improper conditions check in some Intel(R) Data Center GPU Max Series 1100 and 1550 products may allow a privileged user to potentially enable denial of service via local access.
- CVE-2024-23909Aug 14, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-28046Aug 14, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Page 14 of 43