本页列出影响 intel oneapi_hpc_toolkit 的已公开 CVE 漏洞(通过 NVD CPE 关联)。每行包含严重程度评分、摘要与发布日期,便于识别与分析安全问题。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2024-28876 | Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 5.4 | 0.14% | 2024-08-14 | 2024-09-06 |
| CVE-2024-28172 | Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 5.4 | 0.09% | 2024-08-14 | 2024-09-06 |
| CVE-2023-35121 | Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) oneAPI Toolkits before version 2022.3.1 may allow authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 7.8 | 0.16% | 2024-02-14 | 2026-01-14 |
| CVE-2023-29162 | Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) oneAPI Toolkits before version 2022.3.1 may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.0 | 0.17% | 2024-02-14 | 2026-01-14 |
| CVE-2023-27383 | Protection mechanism failure in some Intel(R) oneAPI HPC Toolkit 2023.1 and Intel(R)MPI Library software before version 2021.9 may allow a privileged user to potentially enable escalation of privilege via adjacent access. | [email protected] | 6.8 | 0.38% | 2023-11-14 | 2024-11-21 |
| CVE-2023-24592 | Path traversal in the some Intel(R) oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 7.3 | 0.25% | 2023-11-14 | 2024-11-21 |
| CVE-2023-28823 | Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.15% | 2023-08-11 | 2024-11-21 |
| CVE-2023-27391 | Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.17% | 2023-08-11 | 2024-11-21 |
| CVE-2023-29242 | Improper access control for Intel(R) oneAPI Toolkits before version 2021.1 Beta 10 may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.14% | 2023-05-12 | 2024-11-21 |
| CVE-2023-23910 | Out-of-bounds write for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege via local access. | [email protected] | 3.9 | 0.19% | 2023-05-10 | 2024-11-21 |
| CVE-2023-23909 | Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 2.8 | 0.18% | 2023-05-10 | 2024-11-21 |
| CVE-2023-23580 | Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege via local access. | [email protected] | 4.8 | 0.19% | 2023-05-10 | 2024-11-21 |
| CVE-2023-23569 | Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 7.8 | 0.20% | 2023-05-10 | 2024-11-21 |
| CVE-2023-22355 | Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.0.251 may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.21% | 2023-05-10 | 2024-11-21 |
| CVE-2022-42878 | Null pointer dereference for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 2.8 | 0.18% | 2023-05-10 | 2024-11-21 |