CVE Catalog

CVE-2026-20794

Critical
Published: Translated: NVD NIST

Summary

Buffer overflow in the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 may allow for privilege escalation. An adversary with system access and a low complexity attack may enable local code execution without user interaction.

Risk Assessment

This vulnerability may significantly impact the confidentiality, integrity, and availability of the system, posing a high risk to the organization.

Recommendation

It is recommended to update the driver to version 2.0.2 or later to mitigate the risks associated with this vulnerability.

Original NVD description (English source)

Buffer overflow for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (high), integrity (high) and availability (high) impacts.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS