NULL Pointer Dereference in Intel Media SDK Software
CVE-2022-35883

2.2LOW

Key Information:

Vendor: Intel
Status: Intel(r) Media Sdk Software
Vendor: CVE Published:; 16 February 2023

What is CVE-2022-35883?

A vulnerability exists in Intel Media SDK software that could allow an authenticated user to create a denial of service situation via local access. This arises from a NULL pointer dereference that can occur in versions prior to 22.2.2. Users of affected versions are encouraged to upgrade to the latest version to mitigate risks associated with this vulnerability.

Affected Version(s)

Intel(R) Media SDK software before version 22.2.2

References

http://www.intel.com/content/www/us/en/security-center/ad...

CVSS V3.1

Score:

2.2

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 16, 2023
Vulnerability Reserved
Jul 20, 2022