Altera
Products
2- 20 CVEs
- 5 CVEs
Recent CVEs
25| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-42405 | Med | 0.44 | 6.7 | 0.00 | Feb 12, 2025 | Uncontrolled search path for some Intel(R) Quartus(R) Prime Software before version 23.1.1 Patch 1.01std may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2024-36280 | Med | 0.44 | 6.7 | 0.00 | Feb 12, 2025 | Uncontrolled search path for some Intel(R) High Level Synthesis Compiler software before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2024-31407 | Med | 0.44 | 6.7 | 0.00 | Nov 13, 2024 | Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software for Intel(R) Quartus(R) Prime Pro Edition Software before version 24.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2025-14625 | 0.00 | — | 0.00 | Jan 6, 2026 | Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard on Windows (Nios II Command Shell modules), Altera Quartus Prime Lite on Windows (Nios II Command Shell modules) allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 19.1… | |||
| CVE-2025-14614 | 0.00 | — | 0.00 | Jan 6, 2026 | Insecure Temporary File vulnerability in Altera Quartus Prime Standard Installer (SFX) on Windows, Altera Quartus Prime Lite Installer (SFX) on Windows allows Explore for Predictable Temporary File Names.This issue affects Quartus Prime Standard: from 23.1 through… | |||
| CVE-2025-14599 | 0.00 | — | 0.00 | Jan 6, 2026 | Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard Installer (SFX) on Windows, Altera Quartus Prime Lite Installer (SFX) on Windows allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 23.1 through 24.1; Quartus Prime… | |||
| CVE-2025-14612 | 0.00 | — | 0.00 | Jan 6, 2026 | Insecure Temporary File vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows : Use of Predictable File Names.This issue affects Quartus Prime Pro: from 24.1 through 25.1.1. | |||
| CVE-2025-14605 | 0.00 | — | 0.00 | Jan 6, 2026 | Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro on Windows (System Console modules) allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 17.0 through 25.1.1. | |||
| CVE-2025-14596 | 0.00 | — | 0.00 | Jan 6, 2026 | Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 24.1 through 24.3.1. | |||
| CVE-2025-13670 | 0.00 | — | 0.00 | Dec 12, 2025 | The High Level Synthesis Compiler i++ command for Windows is vulnerable to a DLL planting vulnerability | |||
| CVE-2025-13669 | 0.00 | — | 0.00 | Dec 12, 2025 | Uncontrolled Search Path Element vulnerability in Altera High Level Synthesis Compiler on Windows allows Search Order Hijacking.This issue affects High Level Synthesis Compiler: from 19.1 through 24.3. | |||
| CVE-2025-13665 | 0.00 | — | 0.00 | Dec 12, 2025 | The System Console Utility for Windows is vulnerable to a DLL planting vulnerability | |||
| CVE-2025-13668 | 0.00 | — | 0.00 | Dec 11, 2025 | A potential security vulnerability in Quartus® Prime Pro Edition Design Software may allow escalation of privilege. | |||
| CVE-2025-13664 | 0.00 | — | 0.00 | Dec 11, 2025 | A potential security vulnerability in Quartus® Prime Standard Edition Design Software may allow escalation of privilege. | |||
| CVE-2025-13663 | 0.00 | — | 0.00 | Dec 11, 2025 | Under certain circumstances, the Quartus Prime Pro Installer for Windows does not check the permissions of the Quartus target installation directory if the target installation directory already exists. | |||
| CVE-2024-23907 | 0.00 | — | 0.00 | Aug 14, 2024 | Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2023-24016 | 0.00 | — | 0.00 | Aug 11, 2023 | Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2022-37329 | 0.00 | — | 0.00 | Feb 16, 2023 | Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro and Standard Edition software may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2022-26888 | 0.00 | — | 0.00 | Feb 16, 2023 | Cross-site scripting in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable information disclosure via local access. | |||
| CVE-2022-32570 | 0.00 | — | 0.00 | Feb 16, 2023 | Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access. |
- risk 0.44cvss 6.7epss 0.00
Uncontrolled search path for some Intel(R) Quartus(R) Prime Software before version 23.1.1 Patch 1.01std may allow an authenticated user to potentially enable escalation of privilege via local access.
- risk 0.44cvss 6.7epss 0.00
Uncontrolled search path for some Intel(R) High Level Synthesis Compiler software before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
- risk 0.44cvss 6.7epss 0.00
Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software for Intel(R) Quartus(R) Prime Pro Edition Software before version 24.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2025-14625Jan 6, 2026risk 0.00cvss —epss 0.00
Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard on Windows (Nios II Command Shell modules), Altera Quartus Prime Lite on Windows (Nios II Command Shell modules) allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 19.1…
- CVE-2025-14614Jan 6, 2026risk 0.00cvss —epss 0.00
Insecure Temporary File vulnerability in Altera Quartus Prime Standard Installer (SFX) on Windows, Altera Quartus Prime Lite Installer (SFX) on Windows allows Explore for Predictable Temporary File Names.This issue affects Quartus Prime Standard: from 23.1 through…
- CVE-2025-14599Jan 6, 2026risk 0.00cvss —epss 0.00
Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard Installer (SFX) on Windows, Altera Quartus Prime Lite Installer (SFX) on Windows allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 23.1 through 24.1; Quartus Prime…
- CVE-2025-14612Jan 6, 2026risk 0.00cvss —epss 0.00
Insecure Temporary File vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows : Use of Predictable File Names.This issue affects Quartus Prime Pro: from 24.1 through 25.1.1.
- CVE-2025-14605Jan 6, 2026risk 0.00cvss —epss 0.00
Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro on Windows (System Console modules) allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 17.0 through 25.1.1.
- CVE-2025-14596Jan 6, 2026risk 0.00cvss —epss 0.00
Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 24.1 through 24.3.1.
- CVE-2025-13670Dec 12, 2025risk 0.00cvss —epss 0.00
The High Level Synthesis Compiler i++ command for Windows is vulnerable to a DLL planting vulnerability
- CVE-2025-13669Dec 12, 2025risk 0.00cvss —epss 0.00
Uncontrolled Search Path Element vulnerability in Altera High Level Synthesis Compiler on Windows allows Search Order Hijacking.This issue affects High Level Synthesis Compiler: from 19.1 through 24.3.
- CVE-2025-13665Dec 12, 2025risk 0.00cvss —epss 0.00
The System Console Utility for Windows is vulnerable to a DLL planting vulnerability
- CVE-2025-13668Dec 11, 2025risk 0.00cvss —epss 0.00
A potential security vulnerability in Quartus® Prime Pro Edition Design Software may allow escalation of privilege.
- CVE-2025-13664Dec 11, 2025risk 0.00cvss —epss 0.00
A potential security vulnerability in Quartus® Prime Standard Edition Design Software may allow escalation of privilege.
- CVE-2025-13663Dec 11, 2025risk 0.00cvss —epss 0.00
Under certain circumstances, the Quartus Prime Pro Installer for Windows does not check the permissions of the Quartus target installation directory if the target installation directory already exists.
- CVE-2024-23907Aug 14, 2024risk 0.00cvss —epss 0.00
Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2023-24016Aug 11, 2023risk 0.00cvss —epss 0.00
Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2022-37329Feb 16, 2023risk 0.00cvss —epss 0.00
Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro and Standard Edition software may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2022-26888Feb 16, 2023risk 0.00cvss —epss 0.00
Cross-site scripting in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2022-32570Feb 16, 2023risk 0.00cvss —epss 0.00
Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.