Improper Access Control in Intel Graphics Driver APIs
CVE-2019-14590

5.5MEDIUM

Key Information:

Vendor: Intel
Status: 2019.2 Ipu – Intel(r) Graphics Driver For Windows* And Linux
Vendor: CVE Published:; 14 November 2019

Summary

The Intel Graphics Driver prior to version 26.20.100.7209 features an improper access control vulnerability within its API. This flaw could potentially allow an authenticated attacker with local access to exploit the system, leading to information disclosure. The issue emphasizes the need for stringent access controls to safeguard sensitive data and maintain the integrity of the graphics processing environment.

Affected Version(s)

2019.2 IPU – Intel(R) Graphics Driver for Windows* and Linux See provided reference

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20200320-0005/

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2019
Vulnerability Reserved
Aug 3, 2019