exploitDog

GHSA-9fjw-43mf-j5mq

Опубликовано: 13 мая 2025

Источник: github

Github: Не прошло ревью

CVSS4: 5.6

CVSS3: 5.3

Описание

Improper input validation in the BackupBiosUpdate UEFI firmware SmiVariable driver for the Intel(R) Server D50DNP and M50FCP boards before version R01.02.0003 may allow a privileged user to potentially enable information disclosure via local access.

Improper input validation in the BackupBiosUpdate UEFI firmware SmiVariable driver for the Intel(R) Server D50DNP and M50FCP boards before version R01.02.0003 may allow a privileged user to potentially enable information disclosure via local access.

Ссылки

EPSS

Процентиль: 7%

0.00028

Низкий

5.6 Medium

CVSS4

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2025-20034

CVSS3: 5.3

nvd

9 месяцев назад

Improper input validation in the BackupBiosUpdate UEFI firmware SmiVariable driver for the Intel(R) Server D50DNP and M50FCP boards before version R01.02.0003 may allow a privileged user to potentially enable information disclosure via local access.

EPSS

Процентиль: 7%

0.00028

Низкий

5.6 Medium

CVSS4

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-20