EUVD-2025-208554

🗓️ 11 Mar 2026 00:31:35Reported by EUVDType

Improper input validation in UEFI SMM on Intel platforms may enable local privilege escalation.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2025-20105	10 Mar 202622:49	–	attackerkb
CNNVD	Intel Processors 输入验证错误漏洞	10 Mar 202600:00	–	cnnvd
CVE	CVE-2025-20105	10 Mar 202622:49	–	cve
Cvelist	CVE-2025-20105	10 Mar 202622:49	–	cvelist
EUVD	EUVD-2025-208553	11 Mar 202600:31	–	euvd
Hewlett-Packard	Intel UEFI Reference Firmware March 2026 Security Update	10 Mar 202600:00	–	hp
Intel	2025.3 IPU, UEFI Reference Firmware Advisory	13 Mar 202600:00	–	intel
NVD	CVE-2025-20105	10 Mar 202623:16	–	nvd
Positive Technologies	PT-2026-24496	10 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2025-20105	26 Mar 202615:05	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "91dea167-9b14-3881-88bc-7652e97b924e",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "bdd1a482-b36c-3715-b2ec-37f0fdb70fb1",
        "product": {
          "name": "Intel(R) reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (high), integrity (high) and availability (high) impacts."
        },
        "product_version": "See references"
      }
    ]
  }
]

Source	Link
intel	www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01234.html
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-20105

11 Mar 2026 00:31Current

5.8Medium risk

Vulners AI Score5.8

CVSS 48.7

EPSS0.00045