VDB
CVE-2024-36261
CVE-2024-36261
PUBLISHED
CVSS 6.099999904632568 MEDIUM
Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
EPSS 0.12% · 30.7th percentile
Risk Scores
CVSS 3.1
6.099999904632568
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:L
EPSS Score
0.12%
30.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | UEFI firmware for some Intel(R) Processors | See references |
| ieisystem | uefi_firmware | 1.0 |
Exploit Intelligence
Timeline
- Sep 11, 2024 CVE Published
- Sep 17, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 7, 2024 EPSS Score
- Oct 26, 2024 EPSS Score
- Nov 15, 2024 EPSS Score
- Dec 5, 2024 EPSS Score
- Dec 25, 2024 EPSS Score
- Jan 14, 2025 EPSS Score
- Feb 2, 2025 EPSS Score
- Feb 22, 2025 EPSS Score
- Mar 14, 2025 EPSS Score
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01071.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01103.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01097.html advisory
- https://security.netapp.com/advisory/ntap-20241011-0009/ url