CVE-2023-47282
First published: Thu May 16 2024(Updated: )
Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Media SDK | <= | |
| Intel oneVPL | <23.3.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-47282?
CVE-2023-47282 has been classified with medium severity due to the potential for escalation of privilege.
How do I fix CVE-2023-47282?
To mitigate CVE-2023-47282, users should upgrade Intel Media SDK and Intel oneVPL to the latest versions, specifically ensuring Intel oneVPL is updated to version 23.3.5 or later.
Who is affected by CVE-2023-47282?
CVE-2023-47282 affects users of Intel Media SDK across all versions and Intel oneVPL versions prior to 23.3.5.
What type of vulnerability is CVE-2023-47282?
CVE-2023-47282 is characterized as an out-of-bounds write vulnerability.
Can CVE-2023-47282 be exploited remotely?
CVE-2023-47282 requires local access for exploitation, as it affects authenticated users.
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/description
- agent/type
- agent/author
- agent/severity
- agent/event
- collector/nvd-api
- source/NVD
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel media sdk
- canonical/intel onevpl