CVE-2025-32092

EUVD-2025-207123

10.02.2026, 17:16

Insecure inherited permissions for some Intel(R) Graphics Software before version 25.30.1702.0 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires active user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.7 MEDIUM	LOCAL	HIGH	LOW	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
intel	graphics_driver	𝑥 < 32.0.101.7026
intel	graphics_driver	𝑥 < 32.0.101.6979
intel	graphics_software	𝑥 < 25.30.1702.0
intel	linux_intel_lts_kernel	𝑥 < 6.12.28-linux-250521T070434Z

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-277 - Insecure Inherited Permissions
A product defines a set of insecure permissions that are inherited by objects that are created by the program.

References

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01385.html