vulnerability
Red Hat: CVE-2024-24582: microcode_ctl: Improper input validation in XmlCli feature for UEFI firmware
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:M/Au:M/C:C/I:C/A:C) | Feb 12, 2025 | Jul 9, 2025 | Jul 10, 2025 |
Severity
6
CVSS
(AV:L/AC:M/Au:M/C:C/I:C/A:C)
Published
Feb 12, 2025
Added
Jul 9, 2025
Modified
Jul 10, 2025
Description
Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may allow privileged user to potentially enable escalation of privilege via local access.
Solution
no-fix-redhat-rpm-package
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.