Potential Privileged User Enabled Denial of Service Vulnerability in UEFI Firmware

CVE-2023-25546

2.5LOW

Key Information

Vendor: Intel
Status: Uefi Firmware For Some Intel(r) Processors
Vendor: CVE Published:; 16 September 2024

Summary

Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.

Affected Version(s)

UEFI firmware for some Intel(R) Processors = See references

CVSS V3.1

Score:

2.5

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published.
Sep 16, 2024
Vulnerability Reserved.
Feb 17, 2023

Collectors

NVD DatabaseMitre Database