Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-47282HistoryMay 16, 2024 - 9:16 p.m.
CVE-2023-47282
2024-05-1621:16:00
Debian Security Bug Tracker
security-tracker.debian.org
2
out-of-bounds write
intel media sdk
onevpl software
privilege escalation
local access
cve-2023-47282
unix
CVSS3
3.9
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
AI Score
7.5
Confidence
High
Out-of-bounds write in Intel® Media SDK all versions and some Intel® oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | intel-mediasdk | <= 22.5.4-1 | intel-mediasdk_22.5.4-1_all.deb |
| Debian | 11 | all | intel-mediasdk | <= 21.1.0-1 | intel-mediasdk_21.1.0-1_all.deb |
| Debian | 999 | all | intel-mediasdk | <= 22.5.4-1 | intel-mediasdk_22.5.4-1_all.deb |
| Debian | 13 | all | intel-mediasdk | <= 22.5.4-1 | intel-mediasdk_22.5.4-1_all.deb |
| Debian | 12 | all | onevpl | <= 2023.1.1-1 | onevpl_2023.1.1-1_all.deb |
| Debian | 999 | all | onevpl | <= 1:2.13.0-1 | onevpl_1:2.13.0-1_all.deb |
| Debian | 13 | all | onevpl | <= 1:2.13.0-1 | onevpl_1:2.13.0-1_all.deb |
Related
osv
osv
UBUNTU-CVE-2023-47282
2024-09-19 00:00:00
Security update for gstreamer-plugins-bad
2024-09-10 15:33:55
Security update for libmfx
2024-09-19 14:32:08
cve
cve
CVE-2023-47282
2024-05-16 21:16:00
nvd
nvd
CVE-2023-47282
2024-05-16 21:16:00
cvelist
cvelist
CVE-2023-47282
2024-05-16 20:47:42
vulnrichment
vulnrichment
CVE-2023-47282
2024-05-16 20:47:42
nessus
nessus
SUSE SLES12 Security Update : libmfx (SUSE-SU-2024:3309-1)
2024-09-19 00:00:00
Intel Media SDK Multiple Vulnerabilities (INTEL-SA-00935)
2024-05-24 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:3309-1)
2024-09-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:3198-1)
2024-09-11 00:00:00
openSUSE: Security Advisory for gstreamer (SUSE-SU-2024:3289-1)
2024-09-19 00:00:00
CVSS3
3.9
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
AI Score
7.5
Confidence
High
Related for DEBIANCVE:CVE-2023-47282