Potential Escalation of Privilege Vulnerability in Intel UEFI Firmware

CVE-2023-43626

7.5HIGH

Key Information

Vendor: Intel
Status: Uefi Firmware For Some Intel(r) Processors
Vendor: CVE Published:; 16 September 2024

Summary

Improper access control in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Affected Version(s)

UEFI firmware for some Intel(R) Processors = See references

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published.
Sep 16, 2024
Vulnerability Reserved.
Oct 25, 2023

Collectors

NVD DatabaseMitre Database