CVE-2024-24981

Summary

Improper input validation in PfrSmiUpdateFw driver in UEFI firmware for some Intel(R) Server M50FCP Family products may allow a privileged user to enable escalation of privilege via local access.

Affected Software

VendorProductVersion RangeStatus
n/aUEFI firmware for some Intel(R) Server M50FCP Family productsSee referencesaffected

Weaknesses

  • escalation of privilege
  • CWE-20: Improper Input Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References