Primary

Context

Intel One Boot Flash Update Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in Intel One Boot Flash Update (OFU) software versions prior to 14.1.31. The issue arises from incorrect default permissions that may allow an unprivileged, authenticated user to escalate privileges. This vulnerability could be exploited through a complex, high-effort attack requiring local access and active user interaction, potentially impacting the system's confidentiality, integrity, and availability.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain elevated rights or access within the system.

Remediation

Intel has discontinued support for the OFU software as of April 4, 2025, and recommends users uninstall or stop using it as soon as possible.

Added: Nov 11, 2025, 6:26 PM

Updated: Nov 11, 2025, 6:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.9

remediation

8.3

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.9

remediation

8.3

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel One Boot Flash Update Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Intel One Boot Flash Update

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating