What is CVE-2023-22313?

CVE-2023-22313 is a vulnerability in some Intel QAT Library software that can allow a privileged user to potentially enable information disclosure via local access.

What is the severity of CVE-2023-22313?

The severity of CVE-2023-22313 is low with a CVSS score of 2.3.

Which software versions are affected by CVE-2023-22313?

The affected software versions are Intel Quickassist Technology Library before version 22.07.1, and Intel Quickassist Technology Driver Firmware before version 2.04.

How can a privileged user potentially exploit CVE-2023-22313?

A privileged user can potentially exploit CVE-2023-22313 to enable information disclosure via local access.

Where can I find more information about CVE-2023-22313?

You can find more information about CVE-2023-22313 at the following reference link: [Intel Security Advisory](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00861.html)

Vulnerability/
CVE-2023-22313

low

2.3

CWE

119 92

14/11/2023

2/8/2024

CVE-2023-22313: Buffer Overflow

First published: Tue Nov 14 2023(Updated: )

Improper buffer restrictions in some Intel(R) QAT Library software before version 22.07.1 may allow a privileged user to potentially enable information disclosure via local access.

Credit: secure@intel.com

Affected Software	Affected Version	How to fix
Intel Quickassist Technology Library	<22.07.1
All of
Intel Quickassist Technology Driver Firmware	<2.04
Intel Quickassist Technology Driver	=2.0
All of
Intel Qat Driver Firmware	<1.10
Intel Qat Driver	=1.0

Remedy

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00861.html

Never miss a vulnerability like this again

Reference Links

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00861.html

Frequently Asked Questions

What is CVE-2023-22313?
CVE-2023-22313 is a vulnerability in some Intel QAT Library software that can allow a privileged user to potentially enable information disclosure via local access.
What is the severity of CVE-2023-22313?
The severity of CVE-2023-22313 is low with a CVSS score of 2.3.
Which software versions are affected by CVE-2023-22313?
The affected software versions are Intel Quickassist Technology Library before version 22.07.1, and Intel Quickassist Technology Driver Firmware before version 2.04.
How can a privileged user potentially exploit CVE-2023-22313?
A privileged user can potentially exploit CVE-2023-22313 to enable information disclosure via local access.
Where can I find more information about CVE-2023-22313?
You can find more information about CVE-2023-22313 at the following reference link: [Intel Security Advisory](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00861.html)

collector/nvd-api
agent/references
agent/severity
agent/weakness
agent/author
agent/type
agent/event
agent/description
agent/last-modified-date
agent/remedy
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/intel
canonical/intel quickassist technology library
canonical/intel quickassist technology driver firmware
canonical/intel quickassist technology driver
version/intel quickassist technology driver/2.0
canonical/intel qat driver firmware
canonical/intel qat driver
version/intel qat driver/1.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.