Cyber Resilience

CVE-2024-31155

High

Published: 12 February 2025

Published
12 February 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v4 8.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0004 13.3th percentile
Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-31155 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Intel (inferred from references). Its CVSS base score is 8.7 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 13.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2024-31155 involves improper buffer restrictions (CWE-119) in the UEFI firmware for some Intel processors. Published on 2025-02-12, this vulnerability carries a CVSS v3.1 base score of 7.5 (AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H), indicating a high-severity issue that could allow escalation of privilege.

Exploitation requires local access and a privileged user account (PR:H), along with high attack complexity (AC:H) and no user interaction (UI:N). A successful attack could enable privilege escalation, resulting in high impacts to confidentiality, integrity, and availability, with a changed scope (S:C) that affects dependent components.

Intel's security advisory (INTEL-SA-01198) at https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01198.html provides further details on affected products and recommended mitigations.

EU & UK References

Vulnerability details

Improper buffer restrictions in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
T1542.001 System Firmware Stealth
Adversaries may modify system firmware to persist on systems.
Why these techniques?

Buffer overflow in UEFI firmware directly enables local privilege escalation (T1068) and can be leveraged to compromise system firmware/boot process (T1542.001).

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2022-38696Shared CWE-119
CVE-2023-48267Shared CWE-119
CVE-2024-47796Shared CWE-119
CVE-2026-22167Shared CWE-119
CVE-2025-15411Shared CWE-119
CVE-2026-20700Shared CWE-119
CVE-2026-3145Shared CWE-119
CVE-2024-44238Shared CWE-119
CVE-2025-13547Shared CWE-119
CVE-2025-1179Shared CWE-119

Affected Assets

Intel
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mandates timely identification, reporting, and correction of the improper buffer restrictions flaw in Intel UEFI firmware to eliminate the privilege escalation vulnerability.

prevent

Provides memory protection mechanisms such as address space layout randomization or stack guards that mitigate exploitation of the buffer overflow in UEFI firmware.

preventdetect

Enforces integrity verification of UEFI firmware prior to execution, ensuring only authentic and remediated versions are loaded to block exploitation via tampered or vulnerable code.

References