CVE-2025-32453
Incorrect Default Permissions in Intel Graphics Driver Enable Privilege Escalation
Publication date: 2026-02-10
Last updated on: 2026-04-20
Assigner: Intel Corporation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| intel | graphics_driver | to 32.0.101.7026 (exc) |
| intel | graphics_software | to 25.30.1702.0 (exc) |
| intel | linux_intel_lts_kernel | to 6.12.28-linux-250521T070434Z (exc) |
| intel | graphics_driver | to 31.0.101.2137 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-276 | During installation, installed file permissions are set to allow anyone to modify those files. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves incorrect default permissions in some Intel Graphics Driver software operating within Ring 2, which is a privileged process level. An unprivileged attacker who is an authenticated user can potentially exploit this vulnerability to escalate their privileges on the system. The attack requires local access, has high complexity, and needs active user interaction to succeed.
How can this vulnerability impact me? :
If exploited, this vulnerability may allow an attacker to escalate their privileges, potentially impacting the confidentiality, integrity, and availability of the affected system at a high level. This means sensitive information could be exposed or altered, and system operations could be disrupted.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know