TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2025-31648

LOW
3.9

Beschreibung

Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present with special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (low), integrity (low) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (low), integrity (low) and availability (none) impacts.

CVE Details

CVSS v3.1 Bewertung3.9
SchweregradLOW
CVSS VektorCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
AngriffsvektorLOCAL
KomplexitatHIGH
Erforderliche PrivilegienHIGH
BenutzerinteraktionNONE
Veroffentlicht2/10/2026
Zuletzt geandert2/10/2026
Quellenvd
Honeypot-Sichtungen0

Schwachen (CWE)

CWE-229

Referenzen

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01396.html(secure@intel.com)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.