Intense PC Phoenix SecureCore UEFI firmware does not perform capsule signature validation before upgrading the system firmware. The absence of signature validation allows an attacker with administrator privileges to flash a modified UEFI BIOS.
CPE | Name | Operator | Version |
---|---|---|---|
intense_pc_firmware | eq | <= cr-2.2.0.400.2 |