CVE-2022-26028 — Vulnetix

CVE-2022-26028 PUBLISHED CVSS 6.699999809265137 MEDIUM

Uncontrolled search path in the Intel(R) VTune(TM) Profiler software before version 2022.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

EPSS 0.07% · 20.8th percentile

Risk Scores

CVSS 3.1

6.699999809265137

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.07%

20.8th percentile

Affected Products

Vendor	Product	Versions
n/a	Intel(R) VTune(TM) Profiler software	before version 2022.2.0
intel	vtune_profiler	0

Exploit Intelligence

intel-sa-00676 (circl)

Timeline

Nov 9, 2022 CVE Published
Nov 12, 2022 EPSS Score
Dec 25, 2022 EPSS Score
Feb 6, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 21, 2023 EPSS Score
May 3, 2023 EPSS Score
Jun 15, 2023 EPSS Score
Jul 28, 2023 EPSS Score
Sep 9, 2023 EPSS Score
Oct 21, 2023 EPSS Score
Dec 3, 2023 EPSS Score

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html advisory
intel-sa-00676 url
https://nvd.nist.gov/vuln/detail/CVE-2022-26028 advisory

Open in Interactive Console →