EUVD-2026-29528

Buffer overflow for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...

CVE-2026-20767

Improper input validation for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege...

CVE-2026-20714

Out-of-bounds write for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege. This...

CVE-2026-20767

CVE-2026-20767 affects Intel(R) QAT software drivers for Windows prior to 1.13. The root cause is improper input validation in Ring 3 (User Applications). This can enable local, low‑complexity privilege escalation by an authenticated, unprivileged user with no required interaction, impacting conf...

CVE-2026-20881

Divide by zero for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...

CVE-2026-20793

Unchecked return value for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result ma...

CVE-2026-20914

Null pointer dereference for some IntelR QAT software drivers for Windows before version 2.6.0 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result...

CVE-2026-20793

CVE-2026-20793 concerns some Intel(R) QAT software drivers for Windows prior to version 1.13. The root cause is an unchecked return value in Ring 3 (User Applications), which may allow a local, low-complexity attack by an authenticated, unprivileged user to cause a denial of service. Impact is li...

CVE-2026-20771

Intel QAT software drivers for Windows are affected by a null pointer dereference in Ring 3 (user mode) prior to version 1.13. The vulnerability can be triggered by an unprivileged, authenticated user with low complexity, via local access, potentially causing a denial of service. Affected compone...

PT-2026-40091

Buffer overflow for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...

EUVD-2023-60479

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix out-of-bounds read When preparing an AER-CTR request, the driver copies the key provided by the user into a data structure that is accessible by the firmware. If the target device is QAT GEN4, the key size is...

EUVD-2025-93487

Out-of-bounds read for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a high complexity attack may enable denial of service. This result may potentially occur...

CVE-2025-32732

Buffer overflow for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via...

CVE-2025-32732

Buffer overflow for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via...

CVE-2025-27713

Out-of-bounds write for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This result may...

CVE-2025-24519

Buffer overflow for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable data manipulation. This result may potentially...

CVE-2025-32732

Buffer overflow for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via...

CVE-2025-32732

Summary (CVE-2025-32732): Intel® QuickAssist Technology (QAT) Windows software pre-2.6.0 is vulnerable to a buffer overflow in the Ring 3 user application, which can be exploited by a local, authenticated, low-complexity attacker to cause a denial of service. Impacts may include low confidentiali...

CVE-2025-27713

Intel QAT Windows software prior to version 2.6.0 contains an out-of-bounds write that can allow privilege escalation. The vulnerability affects Ring 3 user applications and may be exploited by an authenticated local attacker with high complexity, requiring no user interaction. Impact is reported...

CVE-2025-27710

The CVE-2025-27710 entry concerns Intel QAT Windows software prior to version 2.6.0, where an untrusted pointer dereference in Ring 3 user applications can lead to information disclosure. The issue originates from a local access scenario with user authentication and low attack complexity, and no ...