CVE-2025-20044
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-12
Last updated on: 2025-08-13
Assigner: Intel Corporation
Description
Description
Improper locking for some Intel(R) TDX Module firmware before version 1.5.13 may allow a privileged user to potentially enable escalation of privilege via local access.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| intel | tdx_module_firmware | 1.5.13 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-667 | The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves improper locking in some Intel(R) TDX Module firmware versions before 1.5.13, which may allow a privileged user with local access to escalate their privileges.
How can this vulnerability impact me? :
The vulnerability can allow a privileged user with local access to escalate their privileges, potentially gaining higher-level access than intended, which could lead to unauthorized actions or control over the affected system.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70