Intel Display Virtualization for Windows OS Privilege Escalation Vulnerability
Vulnerability
A privilege escalation vulnerability has been identified in some versions of Intel's Display Virtualization for Windows OS software prior to version 1797. This vulnerability arises from an uncontrolled search path within Ring 2: Device Drivers, which may allow an unprivileged adversary with an authenticated user status to escalate privileges. The vulnerability requires local access, active user interaction, and a high complexity attack, but does not necessitate special internal knowledge. If exploited, this vulnerability could significantly impact the system's confidentiality, integrity, and availability.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain elevated rights or access within the system.
Remediation
Users are advised to update the Display Virtualization for Windows OS driver software to version 1797 or later. The updated drivers are available for download from the Intel Download Center, with specific links provided for different processor families.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.