Improper Neutralization in Intel oneVPL GPU Software
CVE-2023-22840

3.3LOW

Key Information:

Vendor
Intel
Status
Intel(r) Onevpl Gpu Software
Vendor
CVE Published:
11 August 2023

Summary

The Intel oneVPL GPU software prior to version 22.6.5 contains a vulnerability related to improper neutralization. This issue allows authenticated users with local access to potentially exploit the vulnerability, leading to a denial of service condition. It is crucial for users to update to the latest version to mitigate the risks associated with this vulnerability.

Affected Version(s)

Intel(R) oneVPL GPU software before version 22.6.5

References

http://www.intel.com/content/www/us/en/security-center/ad...
https://lists.fedoraproject.org/archives/list/package-ann...
https://lists.fedoraproject.org/archives/list/package-ann...

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.