CVE-2024-31155
Published: 12 February 2025
Summary
CVE-2024-31155 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Intel (inferred from references). Its CVSS base score is 8.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 13.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and SI-16 (Memory Protection).
Deeper analysis
CVE-2024-31155 involves improper buffer restrictions (CWE-119) in the UEFI firmware for some Intel processors. Published on 2025-02-12, this vulnerability carries a CVSS v3.1 base score of 7.5 (AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H), indicating a high-severity issue that could allow escalation of privilege.
Exploitation requires local access and a privileged user account (PR:H), along with high attack complexity (AC:H) and no user interaction (UI:N). A successful attack could enable privilege escalation, resulting in high impacts to confidentiality, integrity, and availability, with a changed scope (S:C) that affects dependent components.
Intel's security advisory (INTEL-SA-01198) at https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01198.html provides further details on affected products and recommended mitigations.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-4958
Vulnerability details
Improper buffer restrictions in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Buffer overflow in UEFI firmware directly enables local privilege escalation (T1068) and can be leveraged to compromise system firmware/boot process (T1542.001).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly mandates timely identification, reporting, and correction of the improper buffer restrictions flaw in Intel UEFI firmware to eliminate the privilege escalation vulnerability.
Provides memory protection mechanisms such as address space layout randomization or stack guards that mitigate exploitation of the buffer overflow in UEFI firmware.
Enforces integrity verification of UEFI firmware prior to execution, ensuring only authentic and remediated versions are loaded to block exploitation via tampered or vulnerable code.