CVE-2025-35968 in Slim Bootloaderinformation

Résumé

par MITRE • 11/11/2025

Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Intel

Réserver

15/04/2025

Divulgation

11/11/2025

Modérer

accepté

Entrée

VDB-332046

CPE

prêt

CWE

CWE-693 (confirmé)

CVSS

6.4 (CNA)

EPSS

0.00013

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-35968
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-35968
CVE Details	https://www.cvedetails.com/cve/CVE-2025-35968/

◂ Précédent Aperçu Suivant ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!