CVE-2025-32735Improper Check for Unusual or Exceptional Conditions in Firmware-nonfree

CWE-754Improper Check for Unusual or Exceptional Conditions5 documents5 sources
Severity
6.8MEDIUMNVD
EPSS
0.0%
top 95.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Debian Firmware-nonfree
Timeline
PublishedFeb 10

Description

Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 1: Device Drivers may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages1 packages

debiandebian/firmware-nonfree< firmware-nonfree 20251011-1 (forky)

🔴Vulnerability Details

2
GHSA
GHSA-8hvj-g8h8-46hp: Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 1: Device Drivers may allow a denial of service2026-02-10
OSV
CVE-2025-32735: Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 1: Device Drivers may allow a denial of service2026-02-10

📋Vendor Advisories

1
Debian
CVE-2025-32735: firmware-nonfree - Improper conditions check in some firmware for some Intel(R) NPU Drivers within ...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-32735 Impact, Exploitability, and Mitigation Steps | Wiz