Intel Extreme Tuning Utility — known CVE vulnerabilities
Every CVE whose affected-product data names Intel Extreme Tuning Utility, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2020-12350 — CVSS 7.8 (high): Improper access control in the Intel(R) XTU before version 6.5.1.360 may allow an authenticated user to potentially enable escalation of…
CVE-2022-22139 — CVSS 7.3 (high): Uncontrolled search path in the Intel(R) XTU software before version 7.3.0.33 may allow an authenticated user to potentially enable…
CVE-2023-32647 — CVSS 6.8 (medium): Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable…
CVE-2024-21835 — CVSS 6.7 (medium): Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may allow an authenticated user to potentially enable…
CVE-2018-12150 — CVSS 6.7 (medium): Escalation of privilege in Installer for Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially…
CVE-2023-28407 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable…
CVE-2023-34350 — CVSS 6.7 (medium): Uncontrolled search path element in some Intel(R) XTU software before version 7.12.0.15 may allow an authenticated user to potentially…
CVE-2018-12151 — CVSS 5.5 (medium): Buffer overflow in installer for Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially cause a buffer…
CVE-2018-12149 — CVSS 5.5 (medium): Buffer overflow in input handling in Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially deny…
CVE-2023-38561 — CVSS 5.5 (medium): Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable…
CVE-2020-24480 — CVSS 4.4 (medium): Out-of-bounds write in the Intel(R) XTU before version 6.5.3.25 may allow a privileged user to potentially enable denial of service via…