Out-of-Bounds Read Vulnerability in Intel QAT Driver for Windows
CVE-2022-21239

5.6MEDIUM

Key Information:

Vendor: Intel
Status: Intel Qat Driver For Windows
Vendor: CVE Published:; 10 May 2023

What is CVE-2022-21239?

An out-of-bounds read vulnerability exists in the Intel QAT Driver for Windows prior to version 1.9.0-0008. This flaw could allow an authenticated user with local access to exploit the issue, potentially leading to information disclosure. This vulnerability raises security concerns for systems utilizing affected versions of the driver, emphasizing the importance of timely updates to mitigate risk.

Affected Version(s)

Intel QAT Driver for Windows before version 1.9.0-0008

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Dec 9, 2021