Null Pointer Dereference in Intel QAT Software for Windows
CVE-2025-26694

6.8MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Qat Windows Software
Vendor: CVE Published:; 11 November 2025

What is CVE-2025-26694?

A null pointer dereference in Intel QAT Windows software prior to version 2.6.0 may allow an authenticated user to exploit the vulnerability to cause a denial of service. This issue can be triggered via local access with low complexity, requiring no special internal knowledge or user interaction. The exploit can severely affect the availability of the system, leading to potential disruptions without impacting confidentiality or integrity.

Affected Version(s)

Intel(R) QAT Windows software before version 2.6.0.

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Apr 15, 2025

JSON