Description
Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to cause an out of bound memory read via local access.
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00189.html
Various Sources x_refsource_confirm
https://support.lenovo.com/us/en/product_security/LEN-25084
Scores
CVSS v3
3.3
EPSS
0.0005
EPSS Percentile
16.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-125
CWE-20
Status
published
Products (23)
intel/graphics_driver
15.33.43.4425
intel/graphics_driver
15.33.45.4653
intel/graphics_driver
15.33.46.4885
intel/graphics_driver
15.36.26.4294
intel/graphics_driver
15.36.28.4332
intel/graphics_driver
15.36.31.4414
intel/graphics_driver
15.36.33.4578
intel/graphics_driver
15.36.34.4889
intel/graphics_driver
15.40.34.4624
intel/graphics_driver
15.40.36.4703
... and 13 more
Published
Mar 14, 2019
Tracked Since
Feb 18, 2026