CVE-2025-14614

Summary

Insecure Temporary File vulnerability in Altera Quartus Prime Standard 

Installer (SFX)

on Windows, Altera Quartus Prime Lite 

Installer (SFX)

on Windows allows Explore for Predictable Temporary File Names.This issue affects Quartus Prime Standard: from 23.1 through 24.1; Quartus Prime Lite: from 23.1 through 24.1.

Affected Software

VendorProductVersion RangeStatus
AlteraQuartus Prime Standard23.1 <= 24.1affected
AlteraQuartus Prime Lite23.1 <= 24.1affected

Weaknesses

  • CWE-377: CWE-377: Insecure Temporary File

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References