Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access.
References
| Link | Resource |
|---|---|
| http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00890.html | Vendor Advisory |
| http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00890.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2023-08-11 03:15
Updated : 2024-11-21 07:56
NVD link : CVE-2023-28823
Mitre link : CVE-2023-28823
CVE.ORG link : CVE-2023-28823
JSON object : View
Products Affected
intel
- integrated_performance_primitives
- mpi_library
- oneapi_math_kernel_library
- oneapi_dpc\+\+_library_\(onedpl\)
- open_image_denoise
- vtune_profiler_for_oneapi
- open_volume_kernel_library
- oneapi_hpc_toolkit
- oneapi_base_toolkit
- ospray_studio
- ospray
- oneapi_rendering_toolkit
- advisor_for_oneapi
- implicit_spmd_program_compiler
- oneapi_toolkit_and_component_software_installer
- fortran_compiler
- oneapi_data_analytics_library
- oneapi_iot_toolkit
- oneapi_video_processing_library
- oneapi_dpc\+\+\/c\+\+_compiler
- distribution_for_python_programming_language
- dpc\+\+_compatibility_tool
- oneapi_threading_building_blocks
- cpu_runtime_for_opencl_applications
- oneapi_deep_neural_network_library
- trace_analyzer_and_collector
- inspector_for_oneapi
- ipp_cryptography
- embree_ray_tracing_kernel_library
CWE
CWE-427
Uncontrolled Search Path Element