关键信息 漏洞概述 Intel ID: INTEL-SA-01401 Advisory Category: Firmware Impact of Vulnerability: Denial of Service Severity Rating: MEDIUM 漏洞详情 CVE ID: CVE-2025-27560 Description: - Loop with unreachable exit condition ('infinite loop') for some Intel® Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. - This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. - CVSS Scores: - CVSS Base Score 4.0: 6.7 (Medium) - CVSS Vector 4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/Vl:N/VA:H/SC:N/SI:N/SA:N - CVSS Base Score 3.1: 6.0 (Medium) - CVSS Vector 3.1: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H 受影响的产品 建议 Intel recommends that users of Intel® platforms with Intel® Xeon® 6 processor family update to the latest version provided by the system manufacturer that addresses these issues. 致谢 The following issue was found internally by Intel employees. Intel would like to thank Gabriel Dampc, Piotr Kowalewski, and Tomasz Bagniuk. 修订历史