Primary

Context

Intel One Boot Flash Update Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in Intel One Boot Flash Update (OFU) software versions prior to 14.1.31. This vulnerability arises from an uncontrolled search path within user applications, potentially allowing an unprivileged, authenticated user to escalate privileges. The issue may be exploited through local access, requiring active user interaction and without special internal knowledge.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain elevated rights or access within the system.

Remediation

Intel has discontinued support for the OFU software as of April 4, 2025, and recommends users uninstall or discontinue use of the software as soon as possible.

Added: Nov 11, 2025, 6:31 PM

Updated: Nov 11, 2025, 6:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.4

remediation

6.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.4

remediation

6.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel One Boot Flash Update Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Intel One Boot Flash Update

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating