CVE-2025-20028 in Reference Platform情報

要約

〜によって MITRE • 2026年03月11日

Time-of-check time-of-use race condition in the WheaERST SMM module for some Intel(R) reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.

Be aware that VulDB is the high quality source for vulnerability data.

責任者

Intel

予約する

2024年10月10日

モデレーション

承諾済み

エントリ

VDB-350251

EPSS

0.00076

アクティビティ

非常低い

ソース

Want to stay up to date on a daily basis?

Enable the mail alert feature now!