Intel Slim Bootloader UEFI Firmware Privilege Escalation Vulnerability

An integer overflow vulnerability has been identified in the UEFI firmware for Intel Slim Bootloader. This vulnerability may allow a system software adversary with privileged user access to escalate privileges, potentially leading to local code execution. The issue arises from an integer overflow that could be exploited without special internal knowledge or user interaction, but requires local access and a low complexity attack. Affected systems may experience high impacts on confidentiality, integrity, and availability.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to execute arbitrary code with elevated rights. Such an action could severely compromise the affected system's confidentiality, integrity, and availability.

Remediation

Users are advised to update Intel Slim Bootloader to version 01/22/2026 or later. The updated version can be obtained from the official Slim Bootloader GitHub repository.