Primary

Context

Intel QAT Windows Software Null Pointer Dereference Vulnerability Allowing Denial of Service

Vulnerability

A null pointer dereference vulnerability has been identified in some Intel QAT Windows software versions prior to 2.6.0. This vulnerability, which resides within Ring 3: User Applications, may lead to a denial of service. It can be exploited by a system software adversary with authenticated user access, using a low complexity attack, potentially through local access. The vulnerability requires no user interaction but does necessitate certain attack conditions and internal knowledge.

Impact

Exploitation of this vulnerability can cause a denial of service, leading to a high impact on the availability of the affected system.

Remediation

Users are advised to update Intel QAT Windows software to version 2.6.0 or later. The latest version can be downloaded from the Intel Download Center.

Added: Nov 11, 2025, 6:28 PM

Updated: Nov 11, 2025, 6:28 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel QAT Windows Software Null Pointer Dereference Vulnerability Allowing Denial of Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating