PT-2023-4400 · Intel · Intel Onevpl Gpu

Cody Jackson

Publicado

2023-08-08

Atualizado

2023-11-08

CVE-2023-22338

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Intel oneVPL GPU versions prior to 22.6.5

Description The issue is related to an out-of-bounds read in the Intel oneVPL GPU software, which can potentially allow an authenticated user to enable information disclosure via local access. This is due to a buffer overflow in memory.

Recommendations For versions prior to 22.6.5, update to version 22.6.5 or later to resolve the issue. As a temporary workaround, consider restricting local access to the system to minimize the risk of exploitation.

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

BDU:2023-04745

CVE-2023-22338

Produtos afetados

Intel Onevpl Gpu

PT-2023-4400 · Intel · Intel Onevpl Gpu

CVE-2023-22338

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 12