PT-2025-46405 · Intel · Intel Processor Identification Utility
Published
2025-11-11
·
Updated
2025-11-11
·
CVE-2025-27246
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel(R) Processor Identification Utility versions prior to 8.0.43
Description
The Intel(R) Processor Identification Utility, before version 8.0.43, has incorrect default permissions within Ring 3, potentially allowing an escalation of privilege. A local system adversary with an authenticated user and a high complexity attack may enable local code execution. This requires active user interaction and does not require special internal knowledge. The issue may impact the confidentiality, integrity, and availability of the system.
Recommendations
Update the Intel(R) Processor Identification Utility to version 8.0.43 or later.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Processor Identification Utility