Buffer overflow in Intel(r) Reference Platforms

CVE-2025-20073

Improper buffer restrictions in the UEFI DXE module for some Intel(R) Reference Platforms within UEFI may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable d…

Vulnerability class: Buffer Overflow

EPSS: 0.000 (5.6th percentile) — read the EPSS interpretation.

Affected products

N/a Intel(r) Reference Platforms — versions See references

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01234.html