PT-2025-46421 · Intel · Itt Api
Published
2025-11-11
·
Updated
2025-11-11
·
CVE-2025-31931
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Instrumentation and Tracing Technology API (ITT API) versions prior to 3.25.4
Description
The Instrumentation and Tracing Technology API (ITT API) software contains an uncontrolled search path issue within Ring 3: User Applications. This may allow an unprivileged software adversary with an authenticated user and a high complexity attack to escalate privileges. The issue requires local access, active user interaction, and does not require special internal knowledge. The potential impact to the vulnerable system includes confidentiality, integrity, and availability.
Recommendations
Update to version 3.25.4 or later.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Itt Api