Untrusted Pointer Dereference in Intel QuickAssist Adapter Software
CVE-2026-20738

8.5HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Quickassist Adapter 8960 Software
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-20738?

An untrusted pointer dereference vulnerability in the Intel QuickAssist Adapter 8960 software before version 1.13 allows an authenticated, unprivileged adversary to escalate privileges. This may occur through local access without requiring specific internal knowledge or user interaction. If exploited, this vulnerability poses risks to the confidentiality, integrity, and availability of the affected systems. For more information, refer to the advisory from Intel.

Affected Version(s)

Intel(R) QuickAssist Adapter 8960 software before version 1.13

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
Dec 4, 2025

CVE-2026-20738 Data

JSON