Intel NPU Drivers Privilege Escalation Vulnerability

A vulnerability allowing improper condition checks has been identified in certain Intel NPU Drivers for both Linux and Windows. This issue, which resides in user applications, may lead to unauthorized privilege escalation. The vulnerability can be exploited by an unprivileged software adversary with authenticated user access, through a low complexity attack, potentially causing data corruption. Exploitation requires local access and no special internal knowledge or user interaction.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation, allowing an attacker to gain elevated rights or access within the system.

Remediation

Users are advised to update the Intel NPU Driver for Linux to version 1.24.0 or later. For Windows users, the driver should be updated to version 32.0.100.4297 or later. The Linux driver is available on the Intel GitHub releases page, while the Windows driver can be downloaded from the Intel Download Center.