关键信息 Intel ID: INTEL-SA-01347 Advisory Category: Software Impact of Vulnerability: Escalation of Privilege Severity Rating: MEDIUM Original Release: 08/12/2025 Last Revised: 08/12/2025 Summary A potential security vulnerability in some Intel® Driver & Support Assistant (DSA) software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details CVE ID: CVE-2025-26404 Description: Uncollected search path for some Intel® DSA software before version 25.2.15.9 may allow an authenticated user to potentially enable escalation of privilege via local access. CVSS Base Score 3.1: 6.7 Medium CVSS Vector 3.1: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:A/H CVSS Base Score 4.0: 5.4 Medium CVSS Vector 4.0: CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:A/V:C/W:H/VA:H/SC:N/SI:N/SA:N Affected Products Intel® DSA software before version 25.2.15.9 Recommendation Intel recommends updating Intel® DSA software to version 25.2.15.9 or later. Updates are available for download at this location: https://www.intel.com/content/www/us/en/support/intel-driver-support-assistant.html Acknowledgements Intel would like to thank @0x0sean for reporting this issue.