CVE-2025-13669 — Uncontrolled Search Path Element in High Level Synthesis Compiler

CWE-427 — Uncontrolled Search Path Element3 documents3 sources

Severity

5.4MEDIUMNVD

EPSS

0.0%

top 92.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Altera High Level Synthesis Compiler Intel High Level Synthesis Compiler

Timeline

PublishedDec 12

Description

Uncontrolled Search Path Element vulnerability in Altera High Level Synthesis Compiler on Windows allows Search Order Hijacking.This issue affects High Level Synthesis Compiler: from 19.1 through 24.3.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5altera/high_level_synthesis_compiler19.1 — 24.3

▶NVDintel/high_level_synthesis_compiler19.1 — 24.3

🔴Vulnerability Details

GHSA

GHSA-q6m2-f497-3j77: Uncontrolled Search Path Element vulnerability in Altera High Level Synthesis Compiler on Windows allows Search Order Hijacking↗2025-12-12

▶

CVEList

High Level Synthesis Compiler Security Advisory↗2025-12-12

▶