CVE-2025-13663 MEDIUM

CVE-2025-13663: Quartus Prime Pro Edition Installer Advisory

Vendor Altera
Product Quartus Prime Pro
Weakness CWE-279
Published December 11, 2025
Last update December 11, 2025

CVSS base score

6.7/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Under certain circumstances, the Quartus Prime Pro Installer for Windows does not check the permissions of the Quartus target installation directory if the target installation directory already exists.

Key dates

02Disclosure timeline

December 11, 2025 CVE published
December 11, 2025 Record updated