CVE-2026-20782

Intel QAT Windows drivers prior to 1.13 are vulnerable to a buffer overflow in Ring 3 user applications, allowing a local, low-privilege attacker with no user interaction to trigger a denial of service. Impact is High on availability and Low on confidentiality/integrity; upgrading to 1.13+ (or ap...

CVE-2026-20782

Buffer overflow for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...

CVE-2026-20782

Buffer overflow for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...

CVE-2026-20772

Intel Connectivity Performance Suite installers prior to version 50.25.1121.193 have an Uncontrolled search path in Ring 3 that may allow privilege escalation. An authenticated user with local access, high attack complexity, and active user interaction could exploit this. Affects confidentiality,...

CVE-2026-20772

Uncontrolled search path for some IntelR Connectivity Performance Suite software installers before version 50.25.1121.193 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may...

CVE-2026-20772

Uncontrolled search path for some IntelR Connectivity Performance Suite software installers before version 50.25.1121.193 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may...

CVE-2026-20771

Null pointer dereference for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result...

CVE-2026-20771

Null pointer dereference for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result...

CVE-2026-20771

Intel QAT software drivers for Windows are affected by a null pointer dereference in Ring 3 (user mode) prior to version 1.13. The vulnerability can be triggered by an unprivileged, authenticated user with low complexity, via local access, potentially causing a denial of service. Affected compone...

CVE-2026-20754

CVE-2026-20754 pertains to improper conditions checks in firmware for Intel NPU Driver components (Ring 1: Device Drivers). The issue arises from a faulty condition check that can permit a local, low-complexity attack by an authenticated, unprivileged user, potentially enabling a denial of servic...

CVE-2026-20754

Improper conditions check in some firmware for some IntelR NPU Drivers within Ring 1: Device Drivers may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via...

CVE-2026-20751

Out-of-bounds read for the IntelR Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...

CVE-2026-20751

The CVE-2026-20751 entry concerns Intel Data Center Graphics Driver for VMware ESXi, vulnerable in versions before 2.0.2. The issue is an out-of-bounds read in Ring 1 device drivers, which may allow a local-privileged attacker with low complexity and no user interaction to cause a denial of servi...

CVE-2026-20738

Intel QuickAssist Adapter 8960 software prior to version 1.13 contains an untrusted pointer dereference in Ring 3 (User Applications) that may allow local privilege escalation by an authenticated, low-priv user with no user interaction. Impact is high on confidentiality, integrity, and availabili...

CVE-2026-20738

Untrusted pointer dereference for some IntelR QuickAssist Adapter 8960 software before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of...

CVE-2026-20738

Untrusted pointer dereference for some IntelR QuickAssist Adapter 8960 software before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of...

CVE-2026-20718

CVE-2026-20718 concerns incorrect default permissions in Intel NPU Driver installers prior to 32.0.100.4511. The issue, exploitable by a local attacker with an authenticated user and high attack complexity, may enable privilege escalation in Ring 3 (User Applications) and could impact confidentia...

CVE-2026-20718

Incorrect default permissions for some IntelR NPU Driver software installers before version 32.0.100.4511 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation ...

CVE-2026-20718

Incorrect default permissions for some IntelR NPU Driver software installers before version 32.0.100.4511 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation ...

CVE-2026-20717

Improper input validation for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result...