CVE-2018-3684

Unquoted service paths in Intel Quartus II in versions 11.0 - 15.0 allow a local attacker to potentially execute arbitrary code...

CVE-2018-3687

Intel reports a Privilege Escalation/Vulnerability in the Intel Quartus family due to unquoted service paths. Affected: Quartus II v11.0–15.0; Quartus Prime v15.1–18.0; Intel Quartus II Programmer and Tools v11.0–15.0; Programmer and Tools v15.1–18.0. Root cause: unquoted service paths in the JTA...

CVE-2018-3688

CVE-2018-3688 refers to an unquoted service path vulnerability in Intel Quartus Prime Programmer and Tools, affecting Quartus Prime Programmer and Tools v15.1–18.0. The underlying issue enables a local attacker to potentially execute arbitrary code with elevated privileges by abusing the service ...

CVE-2018-3683

Intel Quartus Prime (versions 15.1–18.0) is affected by CVE-2018-3683 due to unquoted service paths in the JTAG server executable, allowing a local attacker to potentially execute arbitrary code with elevated privileges. The Intel advisory INTEL-SA-00151 lists affected products and recommends app...

CVE-2018-3688

Unquoted service paths in Intel Quartus Prime Programmer and Tools in versions 15.1 - 18.0 allow a local attacker to potentially execute arbitrary code...

CVE-2018-3684

Intel Intel® Quartus family advisory INTEL-SA-00151 documents a local-priority privilege/escalation flaw in unquoted service paths affecting Quartus II v11.0–15.0 (CVE-2018-3683) and Quartus Prime v15.1–18.0 (CVE-2018-3684). The core issue is unquoted service paths that can allow a local attacker...

Intel® Quartus® Prime Pro

Summary: Intel® Quartus® Prime Pro before version 18.0.1 ships with an open source component, bottle.py, which is disabled by default. If bottle.py is enabled the system is potentially vulnerable to CVE-2016-9964. Description: For details on the CVE-2016-9964 please see:...