Intel Oneapi Base Toolkit — known CVE vulnerabilities
Every CVE whose affected-product data names Intel Oneapi Base Toolkit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (23)
CVE-2023-35121 — CVSS 7.8 (high): Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for some Intel(R) oneAPI Toolkits before version…
CVE-2023-24592 — CVSS 7.3 (high): Path traversal in the some Intel(R) oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to…
CVE-2023-30763 — CVSS 7.2 (high): Heap-based overflow in Intel(R) SoC Watch based software before version 2021.1 may allow a privileged user to potentially enable escalation…
CVE-2023-27383 — CVSS 6.8 (medium): Protection mechanism failure in some Intel(R) oneAPI HPC Toolkit 2023.1 and Intel(R)MPI Library software before version 2021.9 may allow a…
CVE-2025-20079 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) Advisor software may allow an authenticated user to potentially enable escalation of privilege…
CVE-2023-27391 — CVSS 6.7 (medium): Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged…
CVE-2023-28823 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an…
CVE-2023-29242 — CVSS 6.7 (medium): Improper access control for Intel(R) oneAPI Toolkits before version 2021.1 Beta 10 may allow an authenticated user to potentially enable…
CVE-2024-29015 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may allow an authenticated user to potentially…
CVE-2024-36245 — CVSS 6.7 (medium): Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to…
CVE-2024-39284 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) Advisor software before version 2024.2 may allow an authenticated user to potentially enable…
CVE-2023-22355 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.0.251 may allow an…
CVE-2024-21772 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) Advisor software before version 2024.0 may allow an authenticated user to potentially enable…
CVE-2024-21784 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) IPP Cryptography software before version 2021.11 may allow an authenticated user to potentially…
CVE-2024-23491 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to…
CVE-2024-23495 — CVSS 6.7 (medium): Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to…
CVE-2024-26025 — CVSS 6.7 (medium): Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may allow an authenticated user to potentially…
CVE-2024-28887 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an authenticated user to potentially enable…
CVE-2024-28952 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) IPP software for Windows before version 2021.12.0 may allow an authenticated user to potentially…
CVE-2024-37027 — CVSS 6.1 (medium): Improper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to…
CVE-2023-29162 — CVSS 6.0 (medium): Improper buffer restrictions the Intel(R) C++ Compiler Classic before version 2021.8 for Intel(R) oneAPI Toolkits before version 2022.3.1…
CVE-2024-25562 — CVSS 5.8 (medium): Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to…
CVE-2024-24973 — CVSS 2.2 (low): Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to…