Intel Neural Compressor Privilege Escalation Vulnerability

A privilege escalation vulnerability has been identified in Intel Neural Compressor software versions prior to 3.4. This vulnerability arises from improper neutralization within user applications, potentially allowing an unprivileged, authenticated user to escalate privileges. The issue may be exploited through local access, requiring active user interaction and some internal knowledge. While the vulnerability has a low impact on confidentiality, integrity, and availability, it could lead to unauthorized privilege escalation on the affected system.

Impact

Exploitation of this vulnerability could allow an authenticated user to escalate privileges, potentially leading to unauthorized access or control over system resources or functions.

Remediation

Users are advised to update Intel Neural Compressor software to version 3.4 or later. The latest version can be downloaded from the Intel Neural Compressor GitHub releases page.