Insecure Inherited Permissions in Intel Simics Package Manager Software
CVE-2025-22448

6.9MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Simics(r) Package Manager Software
Vendor: CVE Published:; 13 May 2025

What is CVE-2025-22448?

The Intel Simics Package Manager software has a vulnerability due to insecure inherited permissions that potentially allow an authenticated user to trigger a denial of service on systems with versions prior to 1.12.0. This flaw emphasizes the importance of proper permission management in software architecture, ensuring that local access does not lead to exploitation that could affect system stability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Intel(R) Simics(R) Package Manager software before version 1.12.0

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Timeline

Vulnerability published
May 13, 2025
Vulnerability Reserved
Jan 7, 2025

JSON

Intel