CVE-2025-20043 is a vulnerability identified in Intel RealSense SDK software versions prior to 2.56.2. The issue arises from an uncontrolled search path mechanism within the SDK, which can be exploited by an authenticated user with local access to escalate their privileges on the affected system. The vulnerability requires the attacker to have at least low privileges and perform user interaction, making exploitation more complex. The uncontrolled search path means that the software may load malicious or unintended libraries or executables from directories that are not securely controlled, allowing privilege escalation. The vulnerability impacts confidentiality, integrity, and availability due to the potential for unauthorized access and control escalation. The CVSS 4.0 vector indicates local attack vector (AV:L), high attack complexity (AC:H), privileges required are low (PR:L), and user interaction is required (UI:P). The vulnerability does not affect system components remotely and is not known to be exploited in the wild as of the publication date. Intel has addressed this issue in version 2.56.2 of the RealSense SDK, and users are advised to upgrade to this or later versions to remediate the vulnerability.

The vulnerability allows an authenticated local user to escalate privileges, potentially gaining higher-level access than intended. This can lead to unauthorized access to sensitive data, modification or deletion of critical files, and disruption of system operations. In environments where Intel RealSense SDK is used for computer vision and sensing applications, such privilege escalation could compromise the integrity of the data collected or processed, impacting downstream applications and decision-making processes. The requirement for local access and user interaction limits the scope but does not eliminate risk, especially in multi-user systems or environments where users have limited privileges but access to sensitive systems. Organizations relying on Intel RealSense SDK in sectors such as manufacturing, robotics, healthcare, and security may face operational disruptions or data breaches if this vulnerability is exploited. The absence of known exploits reduces immediate risk but does not preclude future attacks.

Organizations should upgrade Intel RealSense SDK to version 2.56.2 or later, where this vulnerability is patched. Until the update is applied, restrict local access to systems running vulnerable versions of the SDK to trusted users only. Implement strict file system permissions and monitor for unauthorized changes in directories used by the SDK to prevent malicious library injection. Employ application whitelisting to restrict execution of unauthorized binaries. Conduct regular audits of user privileges and remove unnecessary local accounts or privileges that could be leveraged for exploitation. Additionally, educate users about the risks of interacting with untrusted files or applications that could trigger the vulnerability. For environments where immediate patching is not feasible, consider isolating affected systems or running the SDK within controlled containers or virtual machines to limit potential damage.