Primary

Context

Intel QAT Windows Software Untrusted Pointer Dereference Vulnerability Allowing Information Disclosure

Vulnerability

Patched

A vulnerability exists in some Intel QAT Windows software versions prior to 2.6.0, involving an untrusted pointer dereference within user applications. This vulnerability may lead to information disclosure. It can be exploited by a system software adversary with authenticated user access, through a low complexity attack, potentially allowing data exposure via local access. The exploitation does not require user interaction but may need special internal knowledge.

Impact

Exploitation of this vulnerability could result in unauthorized information disclosure, with a high impact on system confidentiality.

Remediation

Users are advised to update Intel QAT Windows software to version 2.6.0 or later. The update is available for download from the Intel Download Center.

Added: Nov 11, 2025, 6:26 PM

Updated: Nov 11, 2025, 6:26 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

3.3

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

3.3

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel QAT Windows Software Untrusted Pointer Dereference Vulnerability Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

Intel QuickAssist Technology

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating