CVE Published: 16/02/2023 |
CVE Updated: 03/08/2024 |
CVE Year: 2022 Source: intel |
Vendor: n/a |
Product: Intel(R) Distribution for Python programming language for Intel(R) oneAPI Toolkits Status : PUBLISHED
CVE-2022-26032 Description
Uncontrolled search path element in the Intel(R) Distribution for Python programming language before version 2022.1 for Intel(R) oneAPI Toolkits may allow an authenticated user to potentially enable escalation of privilege via local access.
Metrics
CVSS Version: 3.1 |
Base Score: 6.7 MEDIUM Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
l➤ Exploitability Metrics: Attack Vector (AV)* LOCAL Attack Complexity (AC)* HIGH Privileges Required (PR)* LOW User Interaction (UI)* REQUIRED Scope (S)* UNCHANGED
l➤ Impact Metrics: Confidentiality Impact (C)* HIGH Integrity Impact (I)* HIGH Availability Impact (A)* HIGH
Weakness Enumeration (CWE)
CWE-ID: CWE Name: escalation of privilege Source: n/a
Common Attack Pattern Enumeration and Classification (CAPEC)