Escalation of Privilege in Intel Processor Identification Utility
CVE-2025-20010

8.5HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Processor Identification Utility
Vendor: CVE Published:; 11 November 2025

What is CVE-2025-20010?

The Intel Processor Identification Utility prior to version 8.0.43 utilizes unmaintained third-party components which may permit escalation of privilege. This vulnerability could allow a system software adversary with authenticated access to execute a low complexity attack, potentially leading to unauthorized privilege escalation. Local access is required, with no special internal knowledge or user interaction necessary. The implications of this vulnerability could severely affect the system's confidentiality, integrity, and availability.

Affected Version(s)

Intel(R) Processor Identification Utility before version 8.0.43

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Jan 6, 2025

JSON