CVE-2025-20073

CVE-2025-20073 describes an information disclosure vulnerability in the UEFI DXE module for some Intel reference platforms. The issue is caused by improper buffer restrictions, which could allow a local privilege user with high complexity to cause data exposure without user interaction. Impact is...

CVE-2025-20068

Improper input validation in the UEFI ImcErrorHandler module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

CVE-2025-20068

Improper input validation in the UEFI ImcErrorHandler module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

CVE-2025-20064

CVE-2025-20064 describes improper input validation in the UEFI FlashUcAcmSmm module for Intel reference platforms, enabling local privilege escalation and potential local code execution. The vulnerability requires a privileged system software adversary, with no user interaction, and is characteri...

CVE-2025-20027

Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

CVE-2025-20027

Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

CVE-2025-20005

Improper buffer restrictions in some UEFI firmware for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable data manipulation. This result may potentially occur via local access whe...

CVE-2025-20005

CVE-2025-20005 : Improper buffer restrictions in some Intel reference-platform UEFI firmware may allow a local-privilege-escalation by a privileged system software adversary. The described attack requires a high-complexity, local attacker with no user interaction and does not rely on remote acces...

CVE-2025-20005

Improper buffer restrictions in some UEFI firmware for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable data manipulation. This result may potentially occur via local access whe...

CVE-2025-20096

CVE-2025-20096 involves improper input validation in the UEFI firmware for some Intel Reference Platforms, allowing escalation of privilege. The Red Hat, NVD, Intel advisory and EUVD records describe local access, high attack requirements, and user interaction as prerequisites, with potential imp...

PT-2026-24495

Improper buffer restrictions in the UEFI DXE module for some IntelR Reference Platforms within UEFI may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...

2026.1 IPU, UEFI Reference Firmware Advisory

Summary: A potential security vulnerability in UEFI for some Intel Reference Platforms may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerability. Vulnerability Details: CVEID: CVE-2025-20096 Description: Improper input validation in the UEFI...

EUVD-2025-24437

Malicious code in bioql PyPI...

EUVD-2023-47204

Malicious code in bioql PyPI...

CVE-2025-20077

Missing release of memory after effective lifetime in the UEFI OobRasMmbiHandlerDriver module for some IntelR reference server platforms may allow a privileged user to enable denial of service via local access...

CVE-2025-20077

Missing release of memory after effective lifetime in the UEFI OobRasMmbiHandlerDriver module for some IntelR reference server platforms may allow a privileged user to enable denial of service via local access...

PT-2025-32700 · Intel · Intel Reference Server Platforms +1

Name of the Vulnerable Software and Affected Versions: IntelR reference server platforms affected versions not specified Description: A missing release of memory after its effective lifetime within the UEFI OobRasMmbiHandlerDriver module may allow a privileged user to enable a denial of service v...

Intel reference server platforms 安全漏洞

Intel Reference Server Platforms is a reference server platform from Intel Corporation USA. A security vulnerability exists in Intel reference server platforms that stems from a missing memory release and could lead to a denial of service...

CVE-2024-23599

Race condition in Seamless Firmware Updates for some IntelR reference platforms may allow a privileged user to potentially enable denial of service via local access...

CVE-2024-23599

Race condition in Seamless Firmware Updates for some IntelR reference platforms may allow a privileged user to potentially enable denial of service via local access...