Intel Reference Platforms' Firmware Allows Privilege Escalation

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.9

Intel Reference Platforms' Firmware Allows Privilege Escalation

CVE-2025-20096

Summary

Some Intel Reference Platforms' firmware has a flaw that could allow an attacker to gain more power on the system. This could lead to sensitive data being altered or deleted, and the system becoming unavailable. Affected users should update their firmware to a fixed version to prevent this risk.

Original title

Original description

Improper input validation in the UEFI firmware for some Intel Reference Platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable data manipulation. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires active user interaction. The potential vulnerability may impact the confidentiality (none), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (high) and availability (high) impacts.

nvd CVSS4.0 5.9

Vulnerability type

CWE-20 Improper Input Validation

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01393.html

Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026