CVE-2024-24582

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 12, 2025

CWE ID 20

Summary

CVE-2024-24582 is a vulnerability affecting the XmlCli feature in certain UEFI firmware for Intel(R) processors. The issue involves inadequate input validation, granting a privileged user the potential ability to escalate their privileges through local access. This could result in significant security risks if exploited successfully. It is essential for Intel to release a patch to mitigate this vulnerability and prevent potential attacks. Users should apply the patch as soon as it becomes available to maintain the security of their systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3Tk3-o
https://www.cve.org/CVERecord?id=CVE-2024-24582
https://nvd.nist.gov/vuln/detail/CVE-2024-24582

Back to Vulnerability Database

CVE-2024-24582

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations