Every CVE whose affected-product data names Intel Quartus Prime, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (43)
CVE-2022-21203 — CVSS 7.8 (high): Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard Edition before version 21.1 may allow an…
CVE-2022-21174 — CVSS 7.8 (high): Improper access control in a third-party component of Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated…
CVE-2022-21204 — CVSS 7.8 (high): Improper permissions for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable…
CVE-2019-14603 — CVSS 7.8 (high): Improper permissions in the installer for the License Server software for Intel® Quartus® Prime Pro Edition before version 19.3 may allow…
CVE-2018-3683 — CVSS 7.8 (high): Unquoted service paths in Intel Quartus Prime in versions 15.1 - 18.0 allow a local attacker to potentially execute arbitrary code.
CVE-2022-21220 — CVSS 7.8 (high): Improper restriction of XML external entity for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user…
CVE-2019-0171 — CVSS 7.8 (high): Improper directory permissions in the installer for Intel(R) Quartus(R) software may allow an authenticated user to potentially enable…
CVE-2021-44454 — CVSS 7.8 (high): Improper input validation in a third-party component for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an…
CVE-2022-21205 — CVSS 7.5 (high): Improper restriction of XML external entity reference in DSP Builder Pro for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may…
CVE-2020-24454 — CVSS 7.5 (high): Improper Restriction of XML External Entity Reference in subsystem forIntel(R) Quartus(R) Prime Pro Edition before version 20.3 and…
CVE-2022-26840 — CVSS 7.3 (high): Improper neutralization in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially…
CVE-2022-33902 — CVSS 7.3 (high): Insufficient control flow management in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to…
CVE-2022-33892 — CVSS 7.3 (high): Path traversal in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable…
CVE-2020-8737 — CVSS 6.8 (medium): Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before…
CVE-2025-14625 — CVSS 6.7 (medium): Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard on Windows (Nios II Command Shell modules), Altera Quartus…
CVE-2022-27187 — CVSS 6.7 (medium): Uncontrolled search path element in the Intel(R) Quartus Prime Standard edition software before version 21.1 Patch 0.02std may allow an…
CVE-2025-14596 — CVSS 6.7 (medium): Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows Search Order Hijacking.This…
CVE-2025-14599 — CVSS 6.7 (medium): Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard Installer (SFX) on Windows, Altera Quartus Prime Lite…
CVE-2025-14605 — CVSS 6.7 (medium): Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro on Windows (System Console modules) allows Search Order…
CVE-2025-14612 — CVSS 6.7 (medium): Insecure Temporary File vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows : Use of Predictable File Names.This…
CVE-2025-14614 — CVSS 6.7 (medium): Insecure Temporary File vulnerability in Altera Quartus Prime Standard Installer (SFX) on Windows, Altera Quartus Prime Lite Installer…
CVE-2022-32570 — CVSS 6.7 (medium): Improper authentication in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially…
CVE-2022-34157 — CVSS 6.7 (medium): Improper access control in the Intel(R) FPGA SDK for OpenCL(TM) with Intel(R) Quartus(R) Prime Pro Edition software before version 22.1 may…
CVE-2022-37329 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro and Standard Edition software may allow an authenticated user to potentially…
CVE-2022-41693 — CVSS 6.7 (medium): Uncontrolled search path in the Intel(R) Quartus(R) Prime Pro edition software before version 22.3 may allow an authenticated user to…
CVE-2023-24016 — CVSS 6.7 (medium): Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated…
CVE-2024-21777 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro Edition Design software before version 23.4 may allow an authenticated user…
CVE-2024-21809 — CVSS 6.7 (medium): Improper conditions check for some Intel(R) Quartus(R) Prime Lite Edition Design software before version 23.1 may allow an authenticated…
CVE-2024-21837 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) Quartus(R) Prime Lite Edition Design software before version 23.1 may allow an authenticated user…
CVE-2024-21862 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) Quartus(R) Prime Standard Edition Design software before version 23.1 may allow an authenticated…
CVE-2024-22184 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition Design Software before version 24.1 may allow an authenticated user…
CVE-2024-23907 — CVSS 6.7 (medium): Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to…
CVE-2024-38383 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) Quartus(R) Prime Pro Edition software for Windows before version 24.2 may allow an authenticated…
CVE-2024-38668 — CVSS 6.7 (medium): Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an…
CVE-2025-13663 — CVSS 6.7 (medium): Under certain circumstances, the Quartus Prime Pro Installer for Windows does not check the permissions of the Quartus target installation…
CVE-2025-13664 — CVSS 6.7 (medium): A potential security vulnerability in Quartus® Prime Standard Edition Design Software may allow escalation of privilege.
CVE-2025-13668 — CVSS 6.7 (medium): A potential security vulnerability in Quartus® Prime Pro Edition Design Software may allow escalation of privilege.
CVE-2022-27233 — CVSS 6.5 (medium): XML injection in the Quartus(R) Prime Programmer included in the Intel(R) Quartus Prime Pro and Standard edition software may allow an…
CVE-2019-14604 — CVSS 5.5 (medium): Null pointer dereference in the FPGA kernel driver for Intel(R) Quartus(R) Prime Pro Edition before version 19.3 may allow an authenticated…
CVE-2020-8767 — CVSS 5.5 (medium): Uncaught exception in the Intel(R) 50GbE IP Core for Intel(R) Quartus Prime before version 20.2 may allow an authenticated user to…
CVE-2023-24478 — CVSS 5.5 (medium): Use of insufficiently random values for some Intel Agilex(R) software included as part of Intel(R) Quartus(R) Prime Pro Edition for linux…
CVE-2022-26888 — CVSS 2.8 (low): Cross-site scripting in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable…