Escalation of Privilege Vulnerability in Intel QAT Software Drivers for Windows
CVE-2026-20767

8.5HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Qat Software Drivers For Windows
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-20767?

An improper input validation vulnerability exists in Intel QAT software drivers for Windows prior to version 1.13. This flaw may enable an authenticated adversary, with local access and without the need for special internal knowledge, to escalate privileges. Although the attack requires user authentication, it is characterized by low complexity, making it accessible for exploitation. The implications of this vulnerability can severely affect the confidentiality, integrity, and availability of the impacted system.

Affected Version(s)

Intel(R) QAT software drivers for Windows before version 1.13

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
Dec 4, 2025

CVE-2026-20767 Data

JSON