VYPR

UEFI WheaERST module

by Intel

CVEs (2)

  • CVE-2025-20028Mar 10, 2026
    risk 0.00cvss epss 0.00

    Time-of-check time-of-use race condition in the WheaERST SMM module for some Intel(R) reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result…

  • CVE-2025-20027Mar 10, 2026
    risk 0.00cvss epss 0.00

    Improper input validation in the UEFI WheaERST module for some Intel(R) reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may…

VYPR — Vulnerability Intelligence