Improper Initialization in UEFI Firmware in Intel Processors
CVE-2024-31157
6.8MEDIUM
What is CVE-2024-31157?
The UEFI firmware OutOfBandXML module in certain Intel processors is affected by an improper initialization issue. This vulnerability could allow a privileged user with local access to exploit the firmware, leading to potential information disclosure. Stakeholders are recommended to evaluate their systems and implement necessary mitigations as provided in the corresponding Intel advisory.
Affected Version(s)
Intel(R) Processors See references