Details of VAR-202505-3509

ID

VAR-202505-3509

CVE

CVE-2025-20054

TITLE

Intel Processors Denial of Service Vulnerability (CNVD-2025-21345)

Trust: 0.6

sources: CNVD: CNVD-2025-21345

DESCRIPTION

Uncaught exception in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access. Intel Processors are a family of processors manufactured by Intel Corporation, covering a wide range of applications, including laptops, desktops, workstations, and servers, offering performance support from basic to professional levels. An attacker could exploit this vulnerability to cause a denial of service attack

Trust: 1.44

sources: NVD: CVE-2025-20054 // CNVD: CNVD-2025-21345

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-21345

AFFECTED PRODUCTS

vendor:

intel

model:

processors

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2025-21345

CVSS

SEVERITY

CVSSV2

CVSSV3

secure@intel.com:	CVE-2025-20054
value:	MEDIUM
Trust: 1.0
CNVD:	CNVD-2025-21345
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2025-21345
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:S/C:N/I:N/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

secure@intel.com:	CVE-2025-20054
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	2.0
impactScore:	4.0
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-21345 // NVD: CVE-2025-20054

PROBLEMTYPE DATA

problemtype:

CWE-248

Trust: 1.0

sources: NVD: CVE-2025-20054

PATCH

title:

Patch for Intel Processors Denial of Service Vulnerability (CNVD-2025-21345)

url:

https://www.cnvd.org.cn/patchInfo/show/732321

Trust: 0.6

sources: CNVD: CNVD-2025-21345

EXTERNAL IDS

db:	NVD	id:	CVE-2025-20054	Trust: 1.6
db:	CNVD	id:	CNVD-2025-21345	Trust: 0.6

sources: CNVD: CNVD-2025-21345 // NVD: CVE-2025-20054

REFERENCES

url:	https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01244.html	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2025-20054	Trust: 0.6

sources: CNVD: CNVD-2025-21345 // NVD: CVE-2025-20054

SOURCES

db:	CNVD	id:	CNVD-2025-21345
db:	NVD	id:	CVE-2025-20054

LAST UPDATE DATE

2025-09-18T23:17:04.619000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-21345	date:	2025-09-16T00:00:00
db:	NVD	id:	CVE-2025-20054	date:	2025-05-16T14:43:56.797

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-21345	date:	2025-09-16T00:00:00
db:	NVD	id:	CVE-2025-20054	date:	2025-05-13T21:16:05.510