Uncontrolled Search Path Vulnerability in Intel oneAPI Toolkit
CVE-2025-20017

5.4MEDIUM

What is CVE-2025-20017?

The vulnerability identified allows an authenticated user to manipulate the search path used by some installers of Intel's oneAPI Toolkit and component software. This improper handling may enable local escalation of privileges, potentially allowing unauthorized actions or access within the system. It is crucial for users to ensure their installations are secured against such risks.

Affected Version(s)

Intel(R) oneAPI Toolkit and component software installers See references

References

CVSS V4

Score:
5.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.