Privilege Escalation Vulnerability in Intel Connectivity Performance Suite Software
CVE-2026-20772

5.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Connectivity Performance Suite Software Installers
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-20772?

A security vulnerability exists in some installations of Intel(R) Connectivity Performance Suite software prior to version 50.25.1121.193. This flaw, linked to an uncontrolled search path in user applications, may allow an unprivileged attacker with an authenticated user session to escalate privileges. Exploiting this vulnerability requires a high complexity attack and local access, which may potentially compromise the confidentiality, integrity, and availability of the affected system. Mitigating this risk emphasizes the need for timely software updates and consistent security awareness among users.

Affected Version(s)

Intel(R) Connectivity Performance Suite software installers before version 50.25.1121.193

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
Dec 3, 2025

CVE-2026-20772 Data

JSON