CVE-2025-20053Improper Restriction of Operations within the Bounds of a Memory Buffer in Intel-microcode

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents5 sources
Severity
7.0HIGHNVD
EPSS
0.0%
top 97.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Debian Intel-microcode
Timeline
PublishedAug 12
Latest updateNov 10

Description

Improper buffer restrictions for some Intel(R) Xeon(R) Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Packages1 packages

debiandebian/intel-microcode< intel-microcode 3.20250812.1~deb12u1 (bookworm)

🔴Vulnerability Details

3
OSV
intel-microcode vulnerabilities2025-11-10
GHSA
GHSA-4h3q-h7pr-48v4: Improper buffer restrictions for some Intel(R) Xeon(R) Processor firmware with SGX enabled may allow a privileged user to potentially enable escalatio2025-08-12
OSV
CVE-2025-20053: Improper buffer restrictions for some Intel(R) Xeon(R) Processor firmware with SGX enabled may allow a privileged user to potentially enable escalatio2025-08-12

📋Vendor Advisories

2
Ubuntu
Intel Microcode vulnerabilities2025-11-10
Debian
CVE-2025-20053: intel-microcode - Improper buffer restrictions for some Intel(R) Xeon(R) Processor firmware with S...2025