Intel Computing Improvement Program — known CVE vulnerabilities
Every CVE whose affected-product data names Intel Computing Improvement Program, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (21)
CVE-2025-24838 — CVSS 8.8 (high): Improper privilege management for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow…
CVE-2025-24299 — CVSS 8.8 (high): Improper input validation for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an…
CVE-2024-36482 — CVSS 8.2 (high): Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable…
CVE-2018-12168 — CVSS 7.8 (high): Privilege escalation in file permissions in Intel Computing Improvement Program before version 2.2.0.03942 may allow an authenticated user…
CVE-2020-8736 — CVSS 7.8 (high): Improper access control in subsystem for the Intel(R) Computing Improvement Program before version 2.4.5718 may allow an authenticated user…
CVE-2021-0052 — CVSS 7.8 (high): Incorrect default privileges in the Intel(R) Computing Improvement Program before version 2.4.6522 may allow an authenticated user to…
CVE-2021-0074 — CVSS 7.8 (high): Improper permissions in the installer for the Intel(R) Computing Improvement Program software before version 2.4.5982 may allow an…
CVE-2019-11162 — CVSS 7.8 (high): Insufficient access control in hardware abstraction in SEMA driver for Intel(R) Computing Improvement Program before version 2.4.0.04733…
CVE-2025-20050 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an…
CVE-2023-35769 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) CIP software before version 2.4.10577 may allow an authenticated user to potentially enable…
CVE-2024-36276 — CVSS 6.7 (medium): Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow an authenticated user to potentially…
CVE-2025-20614 — CVSS 6.7 (medium): External control of file name or path for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications…
CVE-2025-24863 — CVSS 6.5 (medium): Improper privilege management for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow…
CVE-2025-24834 — CVSS 6.5 (medium): Protection mechanism failure for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow…
CVE-2020-12308 — CVSS 6.5 (medium): Improper access control for the Intel(R) Computing Improvement Program before version 2.4.5982 may allow an unprivileged user to…
CVE-2025-24848 — CVSS 6.3 (medium): Protection mechanism failure for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow…
CVE-2023-43489 — CVSS 5.5 (medium): Improper access control for some Intel(R) CIP software before version 2.4.10717 may allow an authenticated user to potentially enable…
CVE-2025-24847 — CVSS 4.5 (medium): Improper input validation for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an…
CVE-2025-24314 — CVSS 2.2 (low): Improper access control for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an…
CVE-2025-24862 — CVSS 2.0 (low): Unrestricted upload of file with dangerous type for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User…
CVE-2025-24307 — CVSS 2.0 (low): Improper privilege management for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow…