cbcvebase.

Intel Quickassist Technology vulnerabilities

37 known vulnerabilities affecting intel/quickassist_technology.

Total CVEs
37
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH14MEDIUM23

Vulnerabilities

Page 1 of 2
CVE-2026-20767HIGHCVSS 8.5fixed in 1.13.0-00212026-05-12
CVE-2026-20767 [HIGH] CWE-20 CVE-2026-20767: Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 wit Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege. This result may potentially occur via local access wh
nvd
CVE-2026-20714HIGHCVSS 8.5fixed in 1.13.0-00212026-05-12
CVE-2026-20714 [HIGH] CWE-787 CVE-2026-20714: Out-of-bounds write for some Intel(R) QAT software drivers for Windows before version 1.13 within Ri Out-of-bounds write for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege. This result may potentially occur via local access when att
nvd
CVE-2026-20771MEDIUMCVSS 6.9fixed in 1.13.0-00212026-05-12
CVE-2026-20771 [MEDIUM] CWE-476 CVE-2026-20771: Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 1.13 with Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack r
nvd
CVE-2026-20905MEDIUMCVSS 6.9fixed in 2.6.0-00182026-05-12
CVE-2026-20905 [MEDIUM] CWE-20 CVE-2026-20905: Improper input validation for some Intel(R) QAT software drivers for Windows before version 2.6 with Improper input validation for some Intel(R) QAT software drivers for Windows before version 2.6 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack re
nvd
CVE-2026-20914MEDIUMCVSS 6.8fixed in 2.6.0-00182026-05-12
CVE-2026-20914 [MEDIUM] CWE-476 CVE-2026-20914: Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 2.6.0 wit Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 2.6.0 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack
nvd
CVE-2026-20782MEDIUMCVSS 6.9fixed in 1.13.0-00212026-05-12
CVE-2026-20782 [MEDIUM] CWE-120 CVE-2026-20782: Buffer overflow for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3 Buffer overflow for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requiremen
nvd
CVE-2026-20793MEDIUMCVSS 4.8fixed in 1.13.0-00212026-05-12
CVE-2026-20793 [MEDIUM] CWE-252 CVE-2026-20793: Unchecked return value for some Intel(R) QAT software drivers for Windows before version 1.13 within Unchecked return value for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack req
nvd
CVE-2026-20881MEDIUMCVSS 6.8fixed in 1.13.0-00212026-05-12
CVE-2026-20881 [MEDIUM] CWE-369 CVE-2026-20881: Divide by zero for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: Divide by zero for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirement
nvd
CVE-2026-20717MEDIUMCVSS 6.9fixed in 1.13.0-00212026-05-12
CVE-2026-20717 [MEDIUM] CWE-20 CVE-2026-20717: Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 wit Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack r
nvd
CVE-2025-27713HIGHCVSS 7.3fixed in 2.6.0-00182025-11-11
CVE-2025-27713 [HIGH] CWE-787 CVE-2025-27713: Out-of-bounds write for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Out-of-bounds write for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requiremen
nvd
CVE-2025-33000HIGHCVSS 7.3fixed in 2.6.0-00182025-11-11
CVE-2025-33000 [HIGH] CWE-20 CVE-2025-33000: Improper input validation for some Intel QuickAssist Technology before version 2.6.0 within Ring 3: Improper input validation for some Intel QuickAssist Technology before version 2.6.0 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requireme
nvd
CVE-2025-32088MEDIUMCVSS 4.8fixed in 2.6.0-00182025-11-11
CVE-2025-32088 [MEDIUM] CWE-754 CVE-2025-32088: Improper conditions check for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3 Improper conditions check for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are
nvd
CVE-2025-31937MEDIUMCVSS 5.7fixed in 2.6.0-00182025-11-11
CVE-2025-31937 [MEDIUM] CWE-125 CVE-2025-31937: Out-of-bounds read for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Out-of-bounds read for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a high complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are not pr
nvd
CVE-2025-27710MEDIUMCVSS 6.8fixed in 2.6.0-00182025-11-11
CVE-2025-27710 [MEDIUM] CWE-822 CVE-2025-27710: Untrusted pointer dereference for some Intel(R) QAT Windows software before version 2.6.0. within Ri Untrusted pointer dereference for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an information disclosure. System software adversary with an authenticated user combined with a low complexity attack may enable data exposure. This result may potentially occur via local access when attack requiremen
nvd
CVE-2025-30509MEDIUMCVSS 4.8fixed in 2.6.0-00182025-11-11
CVE-2025-30509 [MEDIUM] CWE-20 CVE-2025-30509: Improper input validation for some Intel QuickAssist Technology software before version 2.6.0 within Improper input validation for some Intel QuickAssist Technology software before version 2.6.0 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable data manipulation. This result may potentially occur via local access when attack req
nvd
CVE-2025-32732MEDIUMCVSS 5.8fixed in 2.6.0-00182025-11-11
CVE-2025-32732 [MEDIUM] CWE-120 CVE-2025-32732: Buffer overflow for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User App Buffer overflow for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are present w
nvd
CVE-2025-32446MEDIUMCVSS 6.8fixed in 2.6.0-00182025-11-11
CVE-2025-32446 [MEDIUM] CWE-822 CVE-2025-32446: Untrusted pointer dereference for some Intel QuickAssist Technology software before version 2.6.0 wi Untrusted pointer dereference for some Intel QuickAssist Technology software before version 2.6.0 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable data manipulation. This result may potentially occur via local access when attac
nvd
CVE-2025-24519MEDIUMCVSS 6.8fixed in 2.6.0-00182025-11-11
CVE-2025-24519 [MEDIUM] CWE-120 CVE-2025-24519: Buffer overflow for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User App Buffer overflow for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable data manipulation. This result may potentially occur via local access when attack requirements are no
nvd
CVE-2025-26694MEDIUMCVSS 6.8fixed in 2.6.0-00182025-11-11
CVE-2025-26694 [MEDIUM] CWE-476 CVE-2025-26694: Null pointer dereference for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: Null pointer dereference for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are
nvd
CVE-2025-20090MEDIUMCVSS 6.8fixed in 2.5.0-00072025-08-12
CVE-2025-20090 [MEDIUM] CWE-822 CVE-2025-20090: Untrusted Pointer Dereference for some Intel(R) QuickAssist Technology software before version 2.5.0 Untrusted Pointer Dereference for some Intel(R) QuickAssist Technology software before version 2.5.0 may allow an authenticated user to potentially enable denial of service via local access.
nvd
1 / 2Next →