Vulnerability Description
Improper neutralization in software for the Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable denial of service via local access.
CVSS Score
3.3
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Onevpl Gpu Runtime | < 22.6.5 |
| Fedoraproject | Fedora | 37 |
Related Weaknesses (CWE)
References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00818.hVendor Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Mailing ListThird Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Issue TrackingThird Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Issue TrackingThird Party Advisory
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00818.hVendor Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Mailing ListThird Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Issue TrackingThird Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Issue TrackingThird Party Advisory
FAQ
What is CVE-2023-22840?
CVE-2023-22840 is a vulnerability with a CVSS score of 3.3 (LOW). Improper neutralization in software for the Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable denial of service via local access.
How severe is CVE-2023-22840?
CVE-2023-22840 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-22840?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Onevpl Gpu Runtime, Fedoraproject Fedora.