VYPR

Vendor CVEs

Altera

All CVEs

25 total · sorted by risk
  • CVE-2024-42405MedFeb 12, 2025
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) Quartus(R) Prime Software before version 23.1.1 Patch 1.01std may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-36280MedFeb 12, 2025
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) High Level Synthesis Compiler software before version 24.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-31407MedNov 13, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software for Intel(R) Quartus(R) Prime Pro Edition Software before version 24.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2025-14625Jan 6, 2026
    risk 0.00cvss epss 0.00

    Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard on Windows (Nios II Command Shell modules), Altera Quartus Prime Lite on Windows (Nios II Command Shell modules) allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 19.1…

  • CVE-2025-14614Jan 6, 2026
    risk 0.00cvss epss 0.00

    Insecure Temporary File vulnerability in Altera Quartus Prime Standard  Installer (SFX) on Windows, Altera Quartus Prime Lite  Installer (SFX) on Windows allows Explore for Predictable Temporary File Names.This issue affects Quartus Prime Standard: from 23.1 through…

  • CVE-2025-14599Jan 6, 2026
    risk 0.00cvss epss 0.00

    Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard Installer (SFX) on Windows, Altera Quartus Prime Lite  Installer (SFX) on Windows allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 23.1 through 24.1; Quartus Prime…

  • CVE-2025-14612Jan 6, 2026
    risk 0.00cvss epss 0.00

    Insecure Temporary File vulnerability in Altera Quartus Prime Pro  Installer (SFX) on Windows allows : Use of Predictable File Names.This issue affects Quartus Prime Pro: from 24.1 through 25.1.1.

  • CVE-2025-14605Jan 6, 2026
    risk 0.00cvss epss 0.00

    Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro on Windows (System Console modules) allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 17.0 through 25.1.1.

  • CVE-2025-14596Jan 6, 2026
    risk 0.00cvss epss 0.00

    Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 24.1 through 24.3.1.

  • CVE-2025-13670Dec 12, 2025
    risk 0.00cvss epss 0.00

    The High Level Synthesis Compiler i++ command for Windows is vulnerable to a DLL planting vulnerability

  • CVE-2025-13669Dec 12, 2025
    risk 0.00cvss epss 0.00

    Uncontrolled Search Path Element vulnerability in Altera High Level Synthesis Compiler on Windows allows Search Order Hijacking.This issue affects High Level Synthesis Compiler: from 19.1 through 24.3.

  • CVE-2025-13665Dec 12, 2025
    risk 0.00cvss epss 0.00

    The System Console Utility for Windows is vulnerable to a DLL planting vulnerability

  • CVE-2025-13668Dec 11, 2025
    risk 0.00cvss epss 0.00

    A potential security vulnerability in Quartus® Prime Pro Edition Design Software may allow escalation of privilege.

  • CVE-2025-13664Dec 11, 2025
    risk 0.00cvss epss 0.00

    A potential security vulnerability in Quartus® Prime Standard Edition Design Software may allow escalation of privilege.

  • CVE-2025-13663Dec 11, 2025
    risk 0.00cvss epss 0.00

    Under certain circumstances, the Quartus Prime Pro Installer for Windows does not check the permissions of the Quartus target installation directory if the target installation directory already exists.

  • CVE-2024-23907Aug 14, 2024
    risk 0.00cvss epss 0.00

    Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-24016Aug 11, 2023
    risk 0.00cvss epss 0.00

    Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-37329Feb 16, 2023
    risk 0.00cvss epss 0.00

    Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro and Standard Edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-26888Feb 16, 2023
    risk 0.00cvss epss 0.00

    Cross-site scripting in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2022-32570Feb 16, 2023
    risk 0.00cvss epss 0.00

    Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-26840Feb 16, 2023
    risk 0.00cvss epss 0.00

    Improper neutralization in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2020-24481Feb 17, 2021
    risk 0.00cvss epss 0.00

    Insecure inherited permissions for the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2020-8767Nov 12, 2020
    risk 0.00cvss epss 0.00

    Uncaught exception in the Intel(R) 50GbE IP Core for Intel(R) Quartus Prime before version 20.2 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2020-12312Nov 12, 2020
    risk 0.00cvss epss 0.00

    Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before version 20.2 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

  • CVE-2020-8737Nov 12, 2020
    risk 0.00cvss epss 0.00

    Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before version 20.1 may allow an unauthenticated user to potentially enable escalation of privilege and/or information disclosure via physical access.