Quartus Prime Security Vulnerabilities and Issues — Quartus Prime CVE List

Lucene search

IntelQuartus Prime

33 matches found

CVE•added 2022/02/09 11:15 p.m.•173 views

CVE-2022-21205

Improper restriction of XML external entity reference in DSP Builder Pro for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS7.3AI score0.00402EPSS

CVE•added 2022/02/09 11:15 p.m.•104 views

CVE-2022-21203

Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard Edition before version 21.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00037EPSS

CVE•added 2022/02/09 11:15 p.m.•71 views

CVE-2021-44454

Improper input validation in a third-party component for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00058EPSS

CVE•added 2022/02/09 11:15 p.m.•71 views

CVE-2022-21174

Improper access control in a third-party component of Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00058EPSS

CVE•added 2018/07/10 9:29 p.m.•70 views

CVE-2018-3683

Unquoted service paths in Intel Quartus Prime in versions 15.1 - 18.0 allow a local attacker to potentially execute arbitrary code.

7.8CVSS7.7AI score0.00057EPSS

CVE•added 2022/02/09 11:15 p.m.•68 views

CVE-2022-21220

Improper restriction of XML external entity for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.8AI score0.00053EPSS

CVE•added 2022/02/09 11:15 p.m.•64 views

CVE-2022-21204

Improper permissions for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.8AI score0.00037EPSS

CVE•added 2019/05/17 4:29 p.m.•62 views

CVE-2019-0171

Improper directory permissions in the installer for Intel(R) Quartus(R) software may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00037EPSS

CVE•added 2024/05/16 9:16 p.m.•59 views

CVE-2024-21837

Uncontrolled search path in some Intel(R) Quartus(R) Prime Lite Edition Design software before version 23.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.3CVSS7AI score0.00123EPSS

CVE•added 2024/05/16 9:16 p.m.•57 views

CVE-2024-21777

Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro Edition Design software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.3CVSS7AI score0.00067EPSS

CVE•added 2019/12/16 8:15 p.m.•56 views

CVE-2019-14604

Null pointer dereference in the FPGA kernel driver for Intel(R) Quartus(R) Prime Pro Edition before version 19.3 may allow an authenticated user to potentially enable denial of service via local access.

5.5CVSS5.2AI score0.00166EPSS

CVE•added 2024/05/16 9:16 p.m.•56 views

CVE-2024-21862

Uncontrolled search path in some Intel(R) Quartus(R) Prime Standard Edition Design software before version 23.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.3CVSS7AI score0.00123EPSS

CVE•added 2024/05/16 9:16 p.m.•54 views

CVE-2024-21809

Improper conditions check for some Intel(R) Quartus(R) Prime Lite Edition Design software before version 23.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.3CVSS7.1AI score0.00081EPSS

CVE•added 2023/02/16 8:15 p.m.•50 views

CVE-2022-37329

Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro and Standard Edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

7.3CVSS7.3AI score0.00119EPSS

CVE•added 2023/02/16 8:15 p.m.•47 views

CVE-2022-34157

Improper access control in the Intel(R) FPGA SDK for OpenCL(TM) with Intel(R) Quartus(R) Prime Pro Edition software before version 22.1 may allow authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.8AI score0.00106EPSS

CVE•added 2024/11/13 9:15 p.m.•47 views

CVE-2024-38383

Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition software for Windows before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS6.8AI score0.00024EPSS

CVE•added 2023/02/16 8:15 p.m.•46 views

CVE-2022-32570

Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.9AI score0.00096EPSS

CVE•added 2019/12/16 8:15 p.m.•45 views

CVE-2019-14603

Improper permissions in the installer for the License Server software for Intel® Quartus® Prime Pro Edition before version 19.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00037EPSS

CVE•added 2023/02/16 8:15 p.m.•45 views

CVE-2022-26888

Cross-site scripting in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable information disclosure via local access.

4.1CVSS4.1AI score0.00415EPSS

CVE•added 2023/05/10 2:15 p.m.•44 views

CVE-2022-41693

Uncontrolled search path in the Intel(R) Quartus(R) Prime Pro edition software before version 22.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.0007EPSS

CVE•added 2024/11/13 9:15 p.m.•43 views

CVE-2024-38668

Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS6.8AI score0.00024EPSS

CVE•added 2024/08/14 2:15 p.m.•42 views

CVE-2024-23907

Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.2AI score0.0003EPSS

CVE•added 2020/11/12 7:15 p.m.•40 views

CVE-2020-24454

Improper Restriction of XML External Entity Reference in subsystem forIntel(R) Quartus(R) Prime Pro Edition before version 20.3 and Intel(R) Quartus(R) Prime Standard Edition before version 20.2 may allow unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS7.2AI score0.00393EPSS

CVE•added 2022/11/11 4:15 p.m.•40 views

CVE-2022-27187

Uncontrolled search path element in the Intel(R) Quartus Prime Standard edition software before version 21.1 Patch 0.02std may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00082EPSS

CVE•added 2023/08/15 1:15 p.m.•40 views

CVE-2023-24478

Use of insufficiently random values for some Intel Agilex(R) software included as part of Intel(R) Quartus(R) Prime Pro Edition for linux before version 22.4 may allow an authenticated user to potentially enable information disclosure via local access.

5.5CVSS5.2AI score0.00062EPSS

CVE•added 2022/11/11 4:15 p.m.•39 views

CVE-2022-27233

XML injection in the Quartus(R) Prime Programmer included in the Intel(R) Quartus Prime Pro and Standard edition software may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS7.4AI score0.00361EPSS

CVE•added 2023/02/16 8:15 p.m.•39 views

CVE-2022-33892

Path traversal in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00103EPSS

CVE•added 2023/02/16 8:15 p.m.•37 views

CVE-2022-33902

Insufficient control flow management in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00106EPSS

CVE•added 2024/08/14 2:15 p.m.•35 views

CVE-2024-22184

Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition Design Software before version 24.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.3AI score0.0003EPSS

CVE•added 2023/02/16 8:15 p.m.•33 views

CVE-2022-26840

Improper neutralization in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00101EPSS

CVE•added 2020/11/12 6:15 p.m.•30 views

CVE-2020-8767

Uncaught exception in the Intel(R) 50GbE IP Core for Intel(R) Quartus Prime before version 20.2 may allow an authenticated user to potentially enable denial of service via local access.

5.5CVSS5.3AI score0.0005EPSS

CVE•added 2020/11/12 6:15 p.m.•27 views

CVE-2020-8737

Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before version 20.1 may allow an unauthenticated user to potentially enable escalation of privilege and/or information disclosure via physical access.

6.8CVSS6.8AI score0.00246EPSS

CVE•added 2023/08/11 3:15 a.m.•22 views

CVE-2023-24016

Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local access.

7.3CVSS7.3AI score0.00061EPSS