PT-2025-46394 · Intel · Intel System Support Utility
Published
2025-11-11
·
Updated
2025-11-11
·
CVE-2025-24842
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel(R) System Support Utility versions prior to 4.1.0
Description
An uncontrolled search path exists in the Intel(R) System Support Utility. This issue, present within Ring 3: User Applications, may allow an escalation of privilege. A local, unprivileged software adversary, combined with a privileged user and a high complexity attack, could potentially enable local code execution. The issue requires passive user interaction and does not require special internal knowledge. The potential impacts to confidentiality, integrity, and availability are considered high, though subsequent system impacts are none.
Recommendations
Update to version 4.1.0 or later.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel System Support Utility