Escalation of Privilege in Intel Processor Identification Utility
CVE-2025-20010

8.5HIGH

Key Information:

Vendor

Intel
Status
Intel(r) Processor Identification Utility
Vendor
CVE Published:
11 November 2025

What is CVE-2025-20010?

The Intel Processor Identification Utility prior to version 8.0.43 utilizes unmaintained third-party components which may permit escalation of privilege. This vulnerability could allow a system software adversary with authenticated access to execute a low complexity attack, potentially leading to unauthorized privilege escalation. Local access is required, with no special internal knowledge or user interaction necessary. The implications of this vulnerability could severely affect the system's confidentiality, integrity, and availability.

Affected Version(s)

Intel(R) Processor Identification Utility before version 8.0.43

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:
8.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-20010 : Escalation of Privilege in Intel Processor Identification Utility