CVE-2022-25905

Uncontrolled search path element in the Intel(R) oneAPI Data Analytics Library (oneDAL) before version 2021.5 for Intel(R) oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: Feb 16, 2023
Updated: Apr 14, 2023
CVE: CVE-2022-25905
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-427

Affected Software
References

Software	From	Fixed in
intel / oneapi_data_analytics_library	-	2021.5

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00674.html

Vulnerability Database

289,871

CVE-2022-25905