漏洞关键信息 Intel ID: INTEL-SA-01415 Advisory Category: Software Impact of Vulnerability: Escalation of Privilege Severity Rating: MEDIUM Original Release: 02/10/2026 Last Revised: 02/10/2026 漏洞详情 CVE ID: CVE-2025-32452 Description: Uncontrolled search path for some AI Playground software before version 2.6.1 beta within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. CVSS Base Score 4.0: 5.4 Medium CVSS Vector 4.0: CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVSS Base Score 3.1: 6.7 Medium CVSS Vector 3.1: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H 受影响的产品 AI Playground software before version 2.6.1 beta. 推荐措施 更新AI Playground软件到版本2.6.1 beta或更高版本。 致谢 感谢 @jQ0sean 报告此问题。