Vulnerability Description
Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may allow privileged user to potentially enable escalation of privilege via local access.
CVSS Score
7.5
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Related Weaknesses (CWE)
References
- https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01139.html
- https://lists.debian.org/debian-lts-announce/2025/03/msg00021.html
FAQ
What is CVE-2024-24582?
CVE-2024-24582 is a vulnerability with a CVSS score of 7.5 (HIGH). Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may allow privileged user to potentially enable escalation of privilege via local access.
How severe is CVE-2024-24582?
CVE-2024-24582 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-24582?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.