Improper Access Control in Intel Vision Software for User Applications
CVE-2026-20887

8.8HIGH

Key Information:

Vendor: Intel
Status: Intel Vision Software
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-20887?

An improper access control vulnerability exists in Intel Vision software that impacts user applications. This weakness may allow unauthorized adversaries, with no authentication needed, to execute attacks that could lead to remote code execution. The vulnerability enables unprivileged software adversaries to exploit it through network access without requiring any user interaction. Although it does not necessitate internal knowledge of the system, this issue poses risks to system confidentiality, integrity, and availability, potentially jeopardizing the security and performance of the affected systems.

Affected Version(s)

Intel Vision software all versions

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
Dec 19, 2025

CVE-2026-20887 Data

JSON