Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveNVDCVE-2014-8274
HistoryJan 05, 2015 - 12:00 a.m.

CVE-2014-8274: Multiple products that implement UEFI systems security bypass

2015-01-0500:00:00
NVD
web.nvd.nist.gov
36
uefi
security bypass
cve-2014-8274
nvd
firmware protection

6.6 Medium

AI Score

Confidence

Low

JSON

Multiple products that implement UEFI systems could allow a local authenticated attacker to bypass security restrictions, caused by the failure to properly restrict access to the boot script used by the EFI S3 Resume Boot Path. An attacker could exploit this vulnerability to bypass various firmware write protections.

Related

cert 1
lenovo 2
nessus 1
cert
cert
UEFI implementations do not properly secure the EFI S3 Resume Boot Path boot script
2015-01-05 00:00:00
lenovo
lenovo
S3 Boot Script Protection
2016-07-22 00:00:00
S3 Boot Script Protection - Lenovo Support US
2016-07-22 00:00:00
nessus
nessus
Intel UEFI EFI S3 Resume Boot Path Script Privilege Escalation (INTEL-SA-00041)
2015-01-12 00:00:00

6.6 Medium

AI Score

Confidence

Low

JSON
Related for CVE-2014-8274
cert1lenovo2nessus1