CVE-2025-31648

CVSS v3.1

3.9

Low

Vector

AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Intel(R) Processor Family (affected versions not specified)

Description An issue involving improper handling of values in the microcode flow may allow for escalation of privilege. A local attacker with a privileged user account, high attack complexity, and special internal knowledge can potentially exploit this issue without requiring user interaction. The issue may impact system confidentiality and integrity, but not availability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-229

Related Identifiers

BDU:2026-01872

CVE-2025-31648

MGASA-2026-0043

OESA-2026-1440

OPENSUSE-SU-2026:10229-1

OPENSUSE-SU-2026:20401-1

SUSE-SU-2026:0668-1

SUSE-SU-2026:0669-1

SUSE-SU-2026:0670-1

SUSE-SU-2026:20522-1

SUSE-SU-2026:20682-1

SUSE-SU-2026:20758-1

SUSE-SU-2026:20941-1

USN-8068-1

Affected Products

Intel Processor Family

Linuxmint

Ubuntu

CVE-2025-31648

Weakness Enumeration

Related Identifiers

Affected Products

References · 45