CVE-2024-24582

High CVSS: 8.7

Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may allow privileged user to potentially enable escalation of privilege via local access.

Vendor

Product

CWE

CWE-20

Yayın Tarihi

2025-02-12 22:15:31

Güncelleme

2025-11-03 21:16:07

Source Identifier

secure@intel.com

KEV Date Added

Kategoriler

CWE-20 HIGH 2025

Referanslar

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html https://lists.debian.org/debian-lts-announce/2025/03/msg00021.html