CVE-2025-35968
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-35968
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Intel Slim Bootloader 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Intel Slim Bootloader是美国英特尔(Intel)公司的一个专为Intel平台设计的轻量级安全启动解决方案。 Intel Slim Bootloader存在安全漏洞,该漏洞源于UEFI固件保护机制失效,可能导致权限提升。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | Slim Bootloader | See references | - |
II. Public POCs for CVE-2025-35968
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-35968
请登录查看更多情报信息。
Same Patch Batch · n/a · 2025-11-11 · 64 CVEs total
| CVE-2025-24838 | 8.8 HIGH | Intel CIP 安全漏洞 |
| CVE-2025-24299 | 8.8 HIGH | Intel CIP 输入验证错误漏洞 |
| CVE-2025-33000 | 8.8 HIGH | Intel QuickAssist Technology 输入验证错误漏洞 |
| CVE-2025-35971 | 8.2 HIGH | Intel PROSet/Wireless WiFi 缓冲区错误漏洞 |
| CVE-2025-30255 | 8.2 HIGH | Intel PROSet/Wireless WiFi 缓冲区错误漏洞 |
| CVE-2025-32091 | 8.2 HIGH | Intel Graphics 安全漏洞 |
| CVE-2025-30185 | 7.9 HIGH | Intel UEFI Integrator Tools 安全漏洞 |
| CVE-2025-20010 | 7.8 HIGH | Intel Processor Identification Utility 安全漏洞 |
| CVE-2025-27713 | 7.8 HIGH | Intel QAT 缓冲区错误漏洞 |
| CVE-2025-33029 | 7.4 HIGH | Intel PROSet/Wireless WiFi Software 缓冲区错误漏洞 |
| CVE-2025-35963 | 7.4 HIGH | Intel PROSet/Wireless WiFi Software 安全漏洞 |
| CVE-2025-35967 | 7.4 HIGH | Intel PROSet/Wireless WiFi 缓冲区错误漏洞 |
| CVE-2025-25059 | 6.7 MEDIUM | Intel OFU 代码问题漏洞 |
| CVE-2025-30506 | 6.7 MEDIUM | Intel Driver and Support Assistant 代码问题漏洞 |
| CVE-2025-24327 | 6.7 MEDIUM | Intel Rapid Storage Technology 安全漏洞 |
| CVE-2025-30182 | 6.7 MEDIUM | Intel Distribution for Python 代码问题漏洞 |
| CVE-2025-27246 | 6.7 MEDIUM | Intel Processor Identification Utility 安全漏洞 |
| CVE-2025-24918 | 6.7 MEDIUM | Intel Server Configuration Utility和Intel Server Firmware Update Utility 后置链接漏洞 |
| CVE-2025-24842 | 6.7 MEDIUM | Intel System Support Utility for Windows 代码问题漏洞 |
| CVE-2025-24491 | 6.7 MEDIUM | Intel Killer 代码问题漏洞 |
Showing top 20 of 64 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2025-35968
No comments yet