329 matches found
CVE-2025-31937
CVE-2025-31937 describes an out-of-bounds read in Intel® QuickAssist Technology (QAT) Windows software prior to version 2.6.0. The issue resides in Ring 3 user applications and can allow a system software adversary with an authenticated, low-privilege user to cause a denial of service, potentiall...
CVE-2025-26694
Null pointer dereference for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially...
CVE-2025-24863
Improper privilege management for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable data exposure. This result...
CVE-2025-24863
Intel CIP software prior to WIN_DCA_2.4.0.11001 is affected by CVE-2025-24863, an improper privilege management flaw that may allow information disclosure. The issue occurs in Ring 3: User Applications and can be triggered by an unauthenticated/unprivileged adversary with a valid user account and...
CVE-2025-24848
Protection mechanism failure for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This...
CVE-2025-24847
Improper input validation for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...
CVE-2025-24838
Improper privilege management for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege...
CVE-2025-24834
Protection mechanism failure for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable data exposure. This result...
CVE-2025-24834
Intel CIP software prior to WIN_DCA_2.4.0.11001 contains a protection mechanism failure in Ring 3: User Applications, which may allow information disclosure. An unprivileged, unauthenticated user with low-complexity attack could exposure data via adjacent access. Affected products: Intel CIP soft...
CVE-2025-24314
Intel CIP software prior to WIN_DCA_2.4.0.11001 has an improper access control in Ring 3 User Applications that may allow information disclosure. An unprivileged attacker with a privileged user and high-complexity conditions could exploit this via network access with no user interaction, potentia...
CVE-2025-24307
Improper privilege management for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable data manipulation. This...
CVE-2025-24307
Intel CIP software vulnerability CVE-2025-24307 affects Intel® CIP software prior to WIN_DCA_2.4.0.11001, involving privilege management in Ring 3: User Applications. The flaw may allow an unprivileged, authenticated user with high complexity attack requirements to escalate privileges and manipul...
CVE-2025-24299
Improper input validation for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege. This...
CVE-2025-20614
External control of file name or path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable escalation of privileg...
CVE-2025-20614
External control of file name or path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable escalation of privileg...
CVE-2025-20614
CVE-2025-20614 concerns Intel’s CIP software prior to WIN_DCA_2.4.0.11001, where external control of a file name or path in Ring 3 user applications may enable privilege escalation. The description across connected sources states an unprivileged software adversary with a privileged user and a low...
PT-2025-46390
Name of the Vulnerable Software and Affected Versions IntelR CIP software versions prior to WIN DCA 2.4.0.11001 Description An improper access control issue exists in some IntelR CIP software. This may allow an information disclosure within Ring 3 User Applications. An unprivileged software...
PT-2025-46395
Name of the Vulnerable Software and Affected Versions IntelR CIP software versions prior to WIN DCA 2.4.0.11001 Description Improper input validation in some IntelR CIP software within Ring 3 User Applications may allow information disclosure. An unprivileged software adversary, combined with a...
PT-2025-46381
Name of the Vulnerable Software and Affected Versions IntelR CIP software versions prior to WIN DCA 2.4.0.11001 Description The software contains a flaw related to external control of file name or path within Ring 3 User Applications, potentially allowing an escalation of privilege. A local...
PT-2025-46386
Name of the Vulnerable Software and Affected Versions IntelR CIP software versions prior to WIN DCA 2.4.0.11001 Description An improper access control issue exists in some IntelR CIP software. This may allow an information disclosure when running within Ring 3 User Applications. An unprivileged...