CVE-2026-20879 - Vulnerability Details

- Out‑of‑Bounds Write in Intel Data Center Graphics Driver for VMware ESXi Leads to Denial of Service

Description

Out-of-bounds write for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable data corruption. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (high) and availability (high) impacts.

Published: 2026-05-12

Score: 8.3 High

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The flaw is an out‑of‑bounds write located in Ring 1 of the Intel Data Center Graphics Driver for VMware ESXi, classified as CWE‑787. When triggered, the driver writes data past the end of a buffer, corrupting adjacent memory. This corruption can cause application crashes, data loss, or a full system reboot. The vendor’s own advisory states the attack may lead to denial of service and high‑level data corruption, with no impact on confidentiality.

Affected Systems

Systems running the Intel Data Center Graphics Driver for VMware ESXi version prior to 2.0.2 are affected. The driver is distributed as part of Intel’s VM‑grade graphics stack and is used on corporate ESXi hosts.

Risk and Exploitability

The CVSS score of 8.3 indicates a high severity. EPSS is not available, and the vulnerability is not listed in CISA’s KEV catalog. The vulnerability is exploitable locally by a privileged user; the attack requires low complexity and no user interaction. An attacker with such access could corrupt memory, causing loss of integrity and availability, while confidentiality remains unaffected.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

Intel(R) Data Center Graphics Driver for VMware ESXi software

unaffected

Version	Status	Constraints
`before version 2.0.2`	affected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the Intel Data Center Graphics Driver to version 2.0.2 or later.
Restrict local privileged access to ESXi hosts that run the vulnerable driver.
If the driver is unnecessary for your environment, disable or uninstall it to eliminate the attack surface.

Generated by OpenCVE AI on May 12, 2026 at 17:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Local

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact High

Subsequent System Availability Impact High

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01402.html

History

Tue, 12 May 2026 18:15:00 +0000

Type	Values Removed	Values Added
Title		Out‑of‑Bounds Write in Intel Data Center Graphics Driver for VMware ESXi Leads to Denial of Service
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 12 May 2026 16:45:00 +0000

Type	Values Removed	Values Added
Description		Out-of-bounds write for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable data corruption. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (high) and availability (high) impacts.
Weaknesses		CWE-787
References		https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01402.html
Metrics		cvssV4_0 `{'score': 8.3, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: intel

Published: 2026-05-12T16:34:51.655Z

Updated: 2026-05-12T17:17:34.439Z

Reserved: 2025-12-03T17:59:50.524Z

Link: CVE-2026-20879

Vulnrichment

Updated: 2026-05-12T17:17:27.290Z

NVD

Status : Received

Published: 2026-05-12T17:16:19.363

Modified: 2026-05-12T17:16:19.363

Link: CVE-2026-20879

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-12T18:00:12Z

Weaknesses

CWE-787

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact High

Subsequent System Availability Impact High

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object