PT-2024-6976 · Intel · Intel Oneapi Base Toolkit+3
William Huhn
+1
·
Published
2024-08-13
·
Updated
2024-08-14
·
CVE-2024-21857
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel oneAPI Compiler software versions prior to 2024.1
Intel Fortran Compiler versions prior to 2024.1
Intel oneAPI Toolkit versions prior to 2024.1
Intel oneAPI Base Toolkit versions prior to 2024.1
Description
The issue is related to an uncontrolled search path element. Exploitation of this issue may allow an attacker to potentially enable escalation of privilege via local access. This can be achieved by an authenticated user.
Recommendations
For Intel oneAPI Compiler software versions prior to 2024.1, update to version 2024.1 or later.
For Intel Fortran Compiler versions prior to 2024.1, update to version 2024.1 or later.
For Intel oneAPI Toolkit versions prior to 2024.1, update to version 2024.1 or later.
For Intel oneAPI Base Toolkit versions prior to 2024.1, update to version 2024.1 or later.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Fortran Compiler
Intel Oneapi Base Toolkit
Intel Oneapi Compiler
Intel Oneapi Toolkit