Primary

Context

Intel oneAPI Toolkit Uncontrolled Search Path Vulnerability Allowing Privilege Escalation

Vulnerability

Patched

A vulnerability exists in some Intel oneAPI Toolkit and component software installers, where an uncontrolled search path may allow an authenticated user to escalate privileges through local access. This issue affects several oneAPI components, including the Base Toolkit, DPC++/C++ Compiler, and various libraries and tools, all prior to specific versions.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation.

Remediation

Users are advised to update Intel oneAPI Toolkits and standalone component software to the latest versions. The updated toolkits can be downloaded from the Intel Developer Tools oneAPI Toolkits page, while standalone components are available from the Intel oneAPI Standalone Components page. For the DPC++/C++ Compiler for open source, version 6.0.0 or later should be downloaded from the Intel LLVM releases page.

Added: Aug 12, 2025, 8:29 PM

Updated: Aug 12, 2025, 8:29 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel oneAPI Toolkit Uncontrolled Search Path Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Intel oneAPI Base Toolkit

Intel oneAPI DPC++/C++ Compiler

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating