CVE-2025-32091
BaseFortify
Publication date: 2025-11-11
Last updated on: 2025-11-11
Assigner: Intel Corporation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| intel | arc_b-series_gpus | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-276 | During installation, installed file permissions are set to allow anyone to modify those files. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves incorrect default permissions in some firmware for Intel Arc B-series GPUs within the device drivers. It may allow a system software adversary who already has privileged user access to escalate their privileges further. The attack is of low complexity, requires local access, no user interaction, and does not require special internal knowledge. Essentially, it could let an attacker with some level of privilege gain higher privileges on the system.
How can this vulnerability impact me? :
The vulnerability can impact the confidentiality, integrity, and availability of the vulnerable system at a high level. This means sensitive information could be exposed, system data or operations could be altered maliciously, and system services could be disrupted or made unavailable.