CVE-2025-27713

CWE-787 — Out-of-bounds Write3 documents3 sources

Severity

7.3HIGH

EPSS

0.0%

top 98.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel Quickassist Technology

Timeline

PublishedNov 11

Description

Out-of-bounds write for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality …

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5intel(r)_qat_windows_softwarebefore version 2.6.0.

▶NVDintel/quickassist_technology< 2.6.0-0018

🔴Vulnerability Details

CVEList

CVE-2025-27713: Out-of-bounds write for some Intel(R) QAT Windows software before version 2↗2025-11-11

▶

GHSA

GHSA-h6fc-99p8-mwq3: Out-of-bounds write for some Intel(R) QAT Windows software before version 2↗2025-11-11

▶