Intel UEFI Firmware: Escalation of Privilege May Occur

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.6

Intel UEFI Firmware: Escalation of Privilege May Occur

CVE-2025-20005

Summary

Some Intel reference platforms have a security issue that could allow a skilled attacker to gain more access to the system. This requires a specific combination of circumstances and technical expertise. To mitigate this risk, ensure your UEFI firmware is up to date and consider implementing additional security measures.

Original title

Original description

Improper buffer restrictions in some UEFI firmware for some Intel(R) reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable data manipulation. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (high) and availability (low) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.

nvd CVSS4.0 5.6

Vulnerability type

CWE-119 Buffer Overflow

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01234.html

Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026