CVE-2025-24519

CWE-120 — Classic Buffer Overflow3 documents3 sources

Severity

6.8MEDIUM

EPSS

0.0%

top 97.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel Quickassist Technology

Timeline

PublishedNov 11

Description

Buffer overflow for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable data manipulation. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), int…

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5intel(r)_qat_windows_softwarebefore version 2.6.0.

▶NVDintel/quickassist_technology< 2.6.0-0018

🔴Vulnerability Details

GHSA

GHSA-qr8g-hpxm-4c3j: Buffer overflow for some Intel(R) QAT Windows software before version 2↗2025-11-11

▶

CVEList

CVE-2025-24519: Buffer overflow for some Intel(R) QAT Windows software before version 2↗2025-11-11

▶