CVE-2025-35969

Intel Server Firmware Update Utility before 16.0.12 is affected by CVE-2025-35969: an Uncontrolled search path flaw in Ring 3 (user applications) may allow privilege escalation via a local attack by an authenticated user with high complexity and requiring user interaction. The impact spans confid...

PT-2026-40076

Uncontrolled search path for some IntelR Server Firmware Update Utility Software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable escalation of...

CVE-2025-25210

Improper input validation for some Server Firmware Update UtilitySysFwUpdt before version 16.0.12 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This...

CVE-2025-22453

Improper input validation for some Server Firmware Update UtilitySysFwUpdt before version 16.0.12 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable local code execution. This...

CVE-2025-35999

Incorrect permission assignment for critical resource for some System Firmware Update Utility SysFwUpdt for IntelR Server Boards and IntelR Server Systems Based before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileg...

CVE-2025-35999

The CVE-2025-35999 entry concerns Intel System Firmware Update Utility (SysFwUpdt) on Intel Server Boards/Server Systems, affected before version 16.0.12. Affected component: SysFwUpdt; root cause: incorrect permission assignment for a critical resource in Ring 3. This enables a local attacker wi...

CVE-2025-25210

Improper input validation for some Server Firmware Update UtilitySysFwUpdt before version 16.0.12 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This...

CVE-2025-25210

Improper input validation for some Server Firmware Update UtilitySysFwUpdt before version 16.0.12 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This...

CVE-2025-22453

Improper input validation for some Server Firmware Update UtilitySysFwUpdt before version 16.0.12 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable local code execution. This...

Intel® Server Firmware Update Utility Software Advisory

Summary: Potential security vulnerabilities for some Intel® Server Firmware Update Utility software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2025-25210 Description: Improper input validati...

Intel Server Firmware Update Utility 输入验证错误漏洞

Intel Server Firmware Update Utility is a command-line tool developed by Intel Corporation. Versions prior to Intel Server Firmware Update Utility 16.0.12 contained a vulnerability related to input validation errors. This vulnerability stemmed from improper input validation, which could lead to...

Intel® Server Board and Intel® Server System Firmware Update Utility Advisory

Summary: A potential security vulnerability in the Intel® Server System Firmware Update Utility for some Intel® Server Board may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-35999 Description:...

PT-2026-7290

Name of the Vulnerable Software and Affected Versions Server Firmware Update Utility SysFwUpdt versions prior to 16.0.12 Description A flaw exists in the input validation process of the Server Firmware Update Utility SysFwUpdt within Ring 3: User Applications. This issue may allow a system softwa...

CVE-2020-24088

An issue was discovered in MmMapIoSpace routine in Foxconn Live Update Utility 2.1.6.26, allows local attackers to escalate privileges...

CVE-2024-2209

A user with administrative privileges can create a compromised dll file of the same name as the original dll within the HP printer’s Firmware Update Utility FUU bundle and place it in the Microsoft Windows default downloads directory which can lead to potential arbitrary code execution...

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

PT-2025-46399

Name of the Vulnerable Software and Affected Versions IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software versions prior to 16.0.12 Description A flaw exists in link resolution before file access 'link following' within Ring 3: User Applications,...

Intel® Server Configuration Utility Software Advisory

Summary: A potential security vulnerability in some Intel® Server Configuration Utility software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-24918 Description: Improper link resolution befo...

EUVD-2020-16824

Malware in sbrugna...

EUVD-2023-26952

Malicious code in bioql PyPI...