PT-2024-1790 · Intel · Intel Oneapi Dpc++/C++ Compiler
Published
2024-02-14
·
Updated
2024-08-01
·
CVE-2023-35121
CVSS v3.1
7.8
High
| Vector | AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel(R) oneAPI DPC++/C++ Compiler versions prior to 2023.2.1
Intel(R) oneAPI DPC++/C++ Compiler versions prior to 2022.2.1 for some Intel(R) oneAPI Toolkits before version 2022.3.1
Description
The issue is related to improper access control in the Intel(R) oneAPI DPC++/C++ Compiler, which may allow an authenticated user to potentially enable escalation of privilege via local access. This could be exploited by a user to gain higher privileges.
Recommendations
For Intel(R) oneAPI DPC++/C++ Compiler versions prior to 2023.2.1, update to version 2023.2.1 or later to resolve the issue.
For Intel(R) oneAPI DPC++/C++ Compiler versions prior to 2022.2.1 for some Intel(R) oneAPI Toolkits before version 2022.3.1, update to version 2022.2.1 or later and ensure the Intel(R) oneAPI Toolkit is updated to version 2022.3.1 or later to resolve the issue.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Oneapi Dpc++/C++ Compiler