13 matches found
CVE-2025-27711
Incorrect default permissions for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable...
EUVD-2025-93501
Incorrect default permissions for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable...
CVE-2025-27711
Incorrect default permissions for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable...
CVE-2025-25059
Uncontrolled search path for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation ...
CVE-2025-27711
Incorrect default permissions for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable...
CVE-2025-27711
CVE-2025-27711 documents a privilege-escalation issue in Intel® One Boot Flash Update (OFU) software before version 14.1.31. The root cause is incorrect default permissions in OFU running in Ring 3: User Applications, enabling an elevation of privilege by an unprivileged adversary who has an auth...
CVE-2025-27711
Incorrect default permissions for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable...
CVE-2025-25059
Uncontrolled search path for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation ...
CVE-2025-25059
Uncontrolled search path for some IntelR One Boot Flash Update IntelR OFU software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation ...
CVE-2025-25059
Intel OFU (One Boot Flash Update) software prior to version 14.1.31 is affected by an Uncontrolled search path issue that could enable local privilege escalation for Ring 3 user applications. An unprivileged, authenticated user with high complexity and active user interaction may leverage this to...
PT-2025-46400
Name of the Vulnerable Software and Affected Versions IntelR One Boot Flash Update IntelR OFU versions prior to 14.1.31 Description An uncontrolled search path issue exists in some IntelR One Boot Flash Update IntelR OFU software. This issue, present within Ring 3: User Applications, may allow an...
PT-2024-2694 · Intel · Intel One Boot Flash Update
Name of the Vulnerable Software and Affected Versions: Intel One Boot Flash Update OFU versions prior to 14.1.31 Description: The issue is related to a protection mechanism failure in the Intel One Boot Flash Update OFU software, which may allow an authenticated user to potentially enable...
Intel One Boot Flash Utility 安全漏洞
The Intel One Boot Flash Utility is an Intel Corporation program for updating a system's BIOS, BMC, Sensor Data Recording SDR, Field-Replaceable Unit FRU, and Intel® Management Engine Intel® ME. Programs for the Intel® Management Engine Intel® ME. A security vulnerability exists in the Intel One...