PT-2026-7284 · Intel · Vtune Profiler+1
Published
2026-02-10
·
Updated
2026-02-10
·
CVE-2025-20106
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
VTune(TM) Profiler software and Intel(R) oneAPI Base Toolkits versions prior to 2025.0
Description
An uncontrolled search path exists in the software installer for VTune(TM) Profiler software and Intel(R) oneAPI Base Toolkits. This issue, occurring within Ring 3: User Applications, may allow an escalation of privilege. A system software adversary with an authenticated user and a high complexity attack may enable privilege escalation. This requires local access, active user interaction, and does not require special internal knowledge. The potential impact to the vulnerable system includes confidentiality, integrity, and availability.
Recommendations
Update to version 2025.0 or later.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Oneapi Base Toolkit
Vtune Profiler