CVE-2022-25987 HIGH

CVE-2022-25987

Vendor N/A
Product Intel(R) C++ Compiler Classic
Published February 16, 2023
Last update January 27, 2025

CVSS base score

8.3/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Improper handling of Unicode encoding in source code to be compiled by the Intel(R) C++ Compiler Classic before version 2021.6 for Intel(R) oneAPI Toolkits before version 2022.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

Key dates

02Disclosure timeline

February 16, 2023 CVE published
January 27, 2025 Record updated