CVE-2022-25905
First published: Thu Feb 16 2023(Updated: )
Uncontrolled search path element in the Intel(R) oneAPI Data Analytics Library (oneDAL) before version 2021.5 for Intel(R) oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Oneapi Data Analytics Library | <2021.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID is CVE-2022-25905.
What is the severity of CVE-2022-25905?
The severity of CVE-2022-25905 is high.
What is the affected software of CVE-2022-25905?
The affected software is Intel Oneapi Data Analytics Library before version 2021.5.
How can an authenticated user exploit CVE-2022-25905?
An authenticated user may exploit CVE-2022-25905 to potentially enable escalation of privilege via local access.
Is there a fix available for CVE-2022-25905?
Yes, a fix is available. Please refer to the advisory provided by Intel for more information.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/intel
- canonical/intel oneapi data analytics library