Intel NPU Drivers Denial-of-Service Vulnerability
Vulnerability
A denial-of-service vulnerability has been identified in some Intel NPU Drivers for Linux and Windows. This issue arises from a protection mechanism failure within user applications, allowing an unprivileged software adversary with authenticated user access to disrupt service. The vulnerability can potentially be exploited through local access, without special internal knowledge, and requires no user interaction. While the vulnerability itself does not impact confidentiality or integrity, it significantly affects system availability.
Impact
Exploitation of this vulnerability leads to a denial-of-service condition, causing a high impact on the availability of the affected system.
Remediation
Users are advised to update the Intel NPU Driver for Linux to version 1.16.0 or later. For Windows, the driver should be updated to version 32.0.100.4023 or later. These updates are available for download from the Intel GitHub repository for Linux drivers and the Intel Download Center for Windows drivers.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.