Privilege Escalation Vulnerability in Intel Chipset Software
CVE-2025-36522

5.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Chipset Software
Vendor: CVE Published:; 10 February 2026

What is CVE-2025-36522?

A security vulnerability exists due to incorrect default permissions in Intel(R) Chipset Software prior to version 10.1.20266.8668. This flaw permits escalation of privilege when an adversary with authenticated user access exploits the vulnerability through a complex local attack. The risk involves potential unauthorized access that could compromise system confidentiality, integrity, and availability, necessitating active user interaction to exploit.

Affected Version(s)

Intel(R) Chipset Software before version 10.1.20266.8668 or later.

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 10, 2026
Vulnerability Reserved
Apr 15, 2025

CVE-2025-36522 Data

JSON