CVE-2025-30509
BaseFortify
Publication date: 2025-11-11
Last updated on: 2025-11-26
Assigner: Intel Corporation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| intel | quickassist_technology | to 2.6.0-0018 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-20 | The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves improper input validation in Intel QuickAssist Technology software before version 2.6.0. It allows an authenticated user with local access and low complexity attack methods to escalate privileges and potentially manipulate data. The attack does not require user interaction or special internal knowledge.
How can this vulnerability impact me? :
The vulnerability may impact the integrity of the system by allowing data manipulation through privilege escalation. However, it does not affect confidentiality or availability. The overall risk is considered low.