Pointer dereference in subsystem in Intel(R) Graphics Driver allows unprivileged user to elevate privileges via local access

Summary:

The Intel® Graphics Drivers for Windows* Code can fail to adequately validate a pointer input. This may lead to modification of kernel memory and a potential for an escalation of privilege. Reference CVE-2017-5727.

Description:

The Intel® Graphics Drivers for Windows* Code can fail to adequately validate a pointer input. This may lead to modification of kernel memory and a potential for an escalation of privilege. The CVSS V3 rating is 7.2 (High.)

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:H/A:H

Affected products:

Mobile, Desktop, Server, Workstation, and Embedded platforms based on Intel® Core™ and Atom™ Processors using an identified driver.
The following table lists impacted driver code branches and the first version containing the recommended mitigation. Driver versions having the last number greater than, or equal to, the listed version are not impacted. Driver versions with the last number less than the listed version are impacted. Driver code branches not listed are not currently impacted.