Security Advisory

CVE-2025-2296

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-09 15:00:48

Last updated 2025-12-09 15:11:26

Assigner TianoCore

State PUBLISHED

Description

EDK2 contains a vulnerability in BIOS where an attacker may cause “ Improper Input Validation” by local access. Successful exploitation of this vulnerability could alter control flow in unexpected ways, potentially allowing arbitrary command execution and impacting Confidentiality, Integrity, and Availability.

← Browse all CVEs View on cve.org ↗