CVE-2025-20082 | Intel Server D50DNP Board/Server M50FCP Board UEFI Firmware SmiVariable Driver toctou (intel-sa-01269)

Inserito da Angelo Barbosa | Mag 14, 2025 | CVE

A vulnerability was found in Intel Server D50DNP Board and Server M50FCP Board. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component UEFI Firmware SmiVariable Driver. The manipulation leads to time-of-check time-of-use.

This vulnerability is known as CVE-2025-20082. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-20082 | Intel Server D50DNP Board/Server M50FCP Board UEFI Firmware SmiVariable Driver toctou (intel-sa-01269)

Post correlati

CVE-2025-21676 | Linux Kernel up to 6.6.73/6.12.10 page_pool_dev_alloc_pages null pointer dereference

CVE-2023-49109 | Apache DolphinScheduler up to 3.2.0 code injection

CVE-2024-23732 | Embedchain up to 0.1.56 JSON Loader json.py redos

CVE-2024-6201 | Halo Service Solutions HaloITSM up to 2.146.0 Template information disclosure