PT-2026-24495 · Intel · Intel Reference Platforms Uefi Dxe Module
Published
2026-03-10
·
Updated
2026-03-10
·
CVE-2025-20073
CVSS v4.0
1.8
Low
| Vector | AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Intel(R) Reference Platforms UEFI DXE module (affected versions not specified)
Description
An issue exists in the UEFI DXE module for some Intel(R) Reference Platforms. An improper buffer restriction may allow information disclosure. A system software adversary with privileged user access and a high complexity attack may enable data exposure. This requires local access and does not require user interaction or special internal knowledge. The issue may impact system confidentiality.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Reference Platforms Uefi Dxe Module