PT-2024-11973 · Intel+2 · Intel Onevpl+3

Published

2024-05-16

·

Updated

2025-04-18

·

CVE-2023-22656

CVSS v3.1

3.9

Low

VectorAV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Intel(R) Media SDK versions prior to 23.3.5 Intel(R) oneVPL software versions prior to 23.3.5
Description The issue is an out-of-bounds read that may allow an authenticated user to potentially enable escalation of privilege via local access.
Recommendations For Intel(R) Media SDK versions prior to 23.3.5, update to version 23.3.5 or later. For Intel(R) oneVPL software versions prior to 23.3.5, update to version 23.3.5 or later.

Fix

Out of bounds Read

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2023-22656
OPENSUSE-SU-2024_3289-1
OPENSUSE-SU-2024_3295-1
OPENSUSE-SU-2024_3339-1
OPENSUSE-SU-2024_3358-1
OPENSUSE-SU-2024_3397-1
OPENSUSE-SU-2025:14936-1
OPENSUSE-SU-2025:14974-1
OPENSUSE-SU-2025:15010-1
SUSE-SU-2024:3198-1
SUSE-SU-2024:3289-1
SUSE-SU-2024:3295-1
SUSE-SU-2024:3309-1
SUSE-SU-2024:3339-1
SUSE-SU-2024:3358-1
SUSE-SU-2024:3397-1
SUSE-SU-2024_3198-1
SUSE-SU-2024_3289-1
SUSE-SU-2024_3295-1
SUSE-SU-2024_3309-1
SUSE-SU-2024_3339-1
SUSE-SU-2024_3358-1
SUSE-SU-2025:0050-1
SUSE-SU-2025_0050-1

Affected Products

Debian
Intel Media Sdk
Intel Onevpl
Suse