CVE-2025-35968
BaseFortify
Publication date: 2025-11-11
Last updated on: 2025-11-12
Assigner: Intel Corporation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-693 | The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a protection mechanism failure in the UEFI firmware for the Slim Bootloader. It may allow an escalation of privilege by an adversary with local access who has a privileged user account and can perform a high complexity attack. The attack does not require special internal knowledge or user interaction and targets the startup code and system management mode (SMM).
How can this vulnerability impact me? :
The vulnerability can impact the confidentiality, integrity, and availability of the vulnerable system at a high level. This means an attacker could potentially gain elevated privileges, compromising system security and stability.