CVE-2025-20003HIGH 8.2EPSS p6.6%

CVE-2025-20003CVE-2025-20003

Description

Improper link resolution before file access ('Link Following') for some Intel(R) Graphics Driver software installers may allow an authenticated user to potentially enable escalation of privilege via local access.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
EPSS0.17% probability of exploitation · percentile 6.6% · 2026-06-19T12:03:05Z
Published2025-05-13
Last modified2026-04-15

Underlying weaknesses· 1

CWE-59

References

  1. https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01259.html

1

TypeTargetConfidenceTier
WeaknessImproper Link Resolution Before File Access ('Link Following')cwe-590%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-20018
CVE
CVE-2025-20101
CVE
Microsoft Windows Link Following Vulnerability
CVE
CVE-2025-20093
CVE
CVE-2025-49739
CVE
CVE-2026-50511
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.