CVE-2025-14599

Summary

Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Standard

Installer (SFX)

on Windows, Altera Quartus Prime Lite 

Installer (SFX)

on Windows allows Search Order Hijacking.This issue affects Quartus Prime Standard: from 23.1 through 24.1; Quartus Prime Lite: from 23.1 through 24.1.

Affected Software

VendorProductVersion RangeStatus
AlteraQuartus Prime Standard23.1 <= 24.1affected
AlteraQuartus Prime Lite23.1 <= 24.1affected

Weaknesses

  • CWE-427: CWE-427: Uncontrolled Search Path Element

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References