Uncontrolled Search Path Vulnerability in Intel VTune Profiler
CVE-2022-21807

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Vtune(tm) Profiler Software
Vendor: CVE Published:; 18 August 2022

What is CVE-2022-21807?

An uncontrolled search path vulnerability in Intel VTune Profiler allows an authenticated user to exploit local access. Versions before 2022.2.0 are at risk, potentially enabling escalation of privileges. It is crucial for users to update their software to mitigate this risk and secure their systems against unauthorized access.

Affected Version(s)

Intel(R) VTune(TM) Profiler software before version 2022.2.0

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2022
Vulnerability Reserved
Feb 3, 2022