Medium severity5.5NVD Advisory· Published Feb 10, 2026· Updated Apr 15, 2026

CVE-2025-32735

Description

Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 1: Device Drivers may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (none) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Improper conditions check in Intel NPU drivers allows local denial of service via authenticated user with low complexity attack.

Vulnerability

Overview CVE-2025-32735 describes an improper conditions check in firmware for certain Intel(R) NPU Drivers within Ring 1: Device Drivers. This flaw originates from insufficient validation of conditions, potentially leading to a denial of service condition [1].

Exploitation

Details To exploit this vulnerability, an attacker must have local access and authenticated user privileges. The attack complexity is low, and no user interaction is required. Special internal knowledge is not necessary, making the attack accessible to unprivileged software adversaries [1].

Impact

Successful exploitation results in a denial of service, primarily affecting system availability (high). Confidentiality and integrity remain unaffected, and no subsequent system impacts beyond availability are expected [1].

Mitigation

Intel has released an advisory (INTEL-SA-01403) addressing this issue. Users are advised to update their Intel NPU drivers to the latest versions provided by Intel or their system vendors [1].

References

INTEL-SA-01403

AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Intel/NPU Driverllm-fuzzy

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

intel.com/content/www/us/en/security-center/advisory/intel-sa-01403.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000