CVE-2025-35968 in Slim Bootloaderinformación

Resumen

por MITRE • 2025-11-11

Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Intel

Reservar

2025-04-15

Divulgación

2025-11-11

Moderación

aceptado

Artículo

VDB-332046

CPE

listo

CWE

CWE-693 (confirmado)

CVSS

6.4 (CNA)

EPSS

0.00013

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-35968
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-35968
CVE Details	https://www.cvedetails.com/cve/CVE-2025-35968/

◂ Anterior Visión De Conjunto Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!