Improper Initialization in Intel AMT and Standard Manageability Firmware
CVE-2024-26021

4.6MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Amt And Intel(r) Standard Manageability
Vendor: CVE Published:; 12 February 2025

What is CVE-2024-26021?

The vulnerability arises from improper initialization in the firmware of specific Intel AMT and Intel Standard Manageability products, which could allow a privileged user to access sensitive information through local access. This flaw highlights the potential risk for data exposure if exploited, emphasizing the need for users to update their firmware and reinforce security protocols.

Affected Version(s)

Intel(R) AMT and Intel(R) Standard Manageability See references

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

4.6

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 12, 2025
Vulnerability Reserved
Mar 13, 2024