Escalation of Privilege in Intel Neural Compressor Software
CVE-2025-27712

2.4LOW

Key Information:

Vendor: Intel
Status: Intel(r) Neural Compressor Software
Vendor: CVE Published:; 11 November 2025

What is CVE-2025-27712?

The Intel Neural Compressor software prior to version v3.4 contains an escalation of privilege vulnerability that could be exploited by unprivileged adversaries authenticated to the system. This flaw may allow unauthorized users to gain elevated access privileges, potentially affecting system confidentiality, integrity, and availability. Exploitation of this vulnerability may demand local access, active user interaction, and specific knowledge about the internal workings of the application, making it less likely to be exploited without targeted effort. Organizations using affected versions should consider updating to mitigate the risk.

Affected Version(s)

Intel(R) Neural Compressor software before version v3.4

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

2.4

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Apr 10, 2025

JSON