CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
AI Score
Confidence
High
Out-of-bounds write in Intel® Media SDK all versions and some Intel® oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | intel-mediasdk | <= 22.5.4-1 | intel-mediasdk_22.5.4-1_all.deb |
Debian | 11 | all | intel-mediasdk | <= 21.1.0-1 | intel-mediasdk_21.1.0-1_all.deb |
Debian | 999 | all | intel-mediasdk | <= 22.5.4-1 | intel-mediasdk_22.5.4-1_all.deb |
Debian | 13 | all | intel-mediasdk | <= 22.5.4-1 | intel-mediasdk_22.5.4-1_all.deb |
Debian | 12 | all | onevpl | <= 2023.1.1-1 | onevpl_2023.1.1-1_all.deb |
Debian | 999 | all | onevpl | <= 1:2.13.0-1 | onevpl_1:2.13.0-1_all.deb |
Debian | 13 | all | onevpl | <= 1:2.13.0-1 | onevpl_1:2.13.0-1_all.deb |