Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2023-52080
HistoryApr 29, 2024 - 12:00 a.m.

CVE-2023-52080

2024-04-2900:00:00
mitre
www.cve.org
2
uefi
firmware
pool overflow
grt->getvariable()
nvram
spi flash
memory tampering
crash

AI Score

7

Confidence

High

EPSS

0

Percentile

9.0%

JSON

IEIT NF5280M6 UEFI firmware through 8.4 has a pool overflow vulnerability, caused by improper use of the gRT->GetVariable() function. Attackers with access to local NVRAM variables can exploit this by modifying these variables on SPI Flash, resulting in memory data being tampered with. When critical data in memory data is tampered with,a crash may occur.

Related

cve 1
nvd 1
vulnrichment 1
cve
cve
CVE-2023-52080
2024-04-29 18:15:07
nvd
nvd
CVE-2023-52080
2024-04-29 18:15:07
vulnrichment
vulnrichment
CVE-2023-52080
2024-04-29 00:00:00

AI Score

7

Confidence

High

EPSS

0

Percentile

9.0%

JSON
Related for CVELIST:CVE-2023-52080
cve1nvd1vulnrichment1