First published: Tue Nov 14 2023(Updated: )
Improper authorization in some Intel(R) QAT drivers for Windows - HW Version 2.0 before version 2.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
|Affected Software||Affected Version||How to fix|
|Intel Quickassist Technology Library||=22.07.1|
|Intel Quickassist Technology Firmware||>=1.0<1.10|
|Intel Quickassist Technology|
|Intel Quickassist Technology Firmware||>=2.0<2.04|
The vulnerability ID for this issue is CVE-2023-28378.
The severity of CVE-2023-28378 is high with a CVSS score of 7.8.
The affected software includes Intel Quickassist Technology Library version 22.07.1 and Intel Quickassist Technology Firmware versions 1.0 to 1.10, as well as 2.0 to 2.04.
An authenticated user may enable escalation of privilege via local access due to improper authorization in the Intel QAT drivers.
You can find more information about this vulnerability at the following link: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00861.html