Severity
High
Analysis Summary
CVE-2025-20083 CVSS:7.5
Improper authentication in the firmware for the Intel(R) Slim Bootloader may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2025-20082 CVSS:7.5
Time-of-check time-of-use race condition in the UEFI firmware SmiVariable driver for the Intel(R) Server D50DNP and M50FCP boards may allow a privileged user to enable escalation of privilege via local access.
CVE-2025-20052 CVSS:7.3
Improper access control for some Intel(R) Graphics software may allow an authenticated user to potentially enable denial of service via local access.
CVE-2025-20046 CVSS:8
Use after free for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Impact
- Privilege Escalation
- Denial of Service
Indicators of Compromise
CVE
CVE-2025-20083
CVE-2025-20082
CVE-2025-20052
CVE-2025-20046
Affected Vendors
Affected Products
- Intel(R) PROSet/Wireless WiFi Software
- Intel(R) Slim Bootloader
- Intel(R) Server D50DNP and M50FCP software
- Intel(R) Graphics software
Remediation
Upgrade to the latest version, available from the Intel Website.