Skip to main content

Slim Bootloader May Allow An Escalation Of Privilege System Software Adversary With A Privileged User Combined With A Low Complexity Attack May Enable Local Code Execution This Result May Potentially Occur Via Local Access When Attack Requirements Are Present Without Special Internal Knowledge And Requires No User Interaction The Potential Vulnerability May Impact The Confidentiality High Integrity High And Availability High Of The Vulnerable System Resulting In Subsequent System Confidentiality High Integrity High And Availability High Impacts

1 CVEs product

Monthly

CVE-2026-20753 HIGH This Week

Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (high), integrity (high) and availability (high) impacts.

Integer Overflow Privilege Escalation RCE Slim Bootloader May Allow An Escalation Of Privilege System Software Adversary With A Privileged User Combined With A Low Complexity Attack May Enable Local Code Execution This Result May Potentially Occur Via Local Access When Attack Requirements Are Present Without Special Internal Knowledge And Requires No User Interaction The Potential Vulnerability May Impact The Confidentiality High Integrity High And Availability High Of The Vulnerable System Resulting In Subsequent System Confidentiality High Integrity High And Availability High Impacts
NVD
CVSS 4.0
8.7
EPSS
0.0%
EPSS 0% CVSS 8.7
HIGH This Week

Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (high) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (high), integrity (high) and availability (high) impacts.

Integer Overflow Privilege Escalation RCE +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy