39 matches found
CVE-2022-27537
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate these potential vulnerabilities...
CVE-2023-6215
A potential security vulnerability has been identified in HP Sure Start’s protection of the Intel Flash Descriptor in certain HP PC products, which might allow security bypass, arbitrary code execution, loss of integrity or confidentiality, or denial of service. HP is releasing BIOS updates to...
EUVD-2023-58462
A potential security vulnerability has been identified in HP Sure Start’s protection of the Intel Flash Descriptor in certain HP PC products, which might allow security bypass, arbitrary code execution, loss of integrity or confidentiality, or denial of service. HP is releasing BIOS updates to...
EUVD-2022-32038
Malicious code in bioql PyPI...
EUVD-2022-32039
Malicious code in bioql PyPI...
CVE-2022-27540
A potential Time-of-Check to Time-of Use TOCTOU vulnerability has been identified in the HP BIOS for certain HP PC products, which might allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability...
CVE-2022-27538
A potential Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in the BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability...
Insyde InsydeH2O kernel 安全漏洞
The Insyde InsydeH2O kernel is a kernel for updating the BIOS of computers from Insyde, a Chinese company. A security vulnerability exists in the Insyde InsydeH2O kernel versions 5.2 prior to 05.29.50, 5.3 prior to 05.38.50, 5.4 prior to 05.46.50, 5.5 prior to 05.54.50, 5.6 prior to 05.61.50, and...
Elan Fingerprint Sensor Security Update
A potential vulnerability has been identified in certain HP PC products using Elan fingerprint sensor devices, which might allow operating system authentication bypass by spoofing. HP is releasing BIOS and fingerprint sensor driver updates to address the potential vulnerability. Elan has resolved...
CVE-2024-28127
Improper input validation in UEFI firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access...
HP BIOS - EDK II Reference Vulnerabilities
Potential EDK II reference code vulnerabilities have been identified in certain HP PC products using the HP System BIOS, which might allow arbitrary code execution. HP is releasing BIOS updates to mitigate these potential vulnerabilities. HP has identified affected platforms and corresponding...
CVE-2022-27540
A potential Time-of-Check to Time-of Use TOCTOU vulnerability has been identified in the HP BIOS for certain HP PC products, which might allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability...
CVE-2022-27540
CVE-2022-27540 concerns a TOCTOU vulnerability in HP BIOS for certain HP PC products. The issue could allow arbitrary code execution, denial of service, and information disclosure. Mitigation is via HP BIOS updates; HP’s HP PC BIOS Additional Security Update documents affected platforms and minim...
Physical bypass of certain HP TamperLock features
Potential vulnerabilities have been identified in certain HP Desktop PC products using the HP TamperLock feature, which might allow intrusion detection bypass via a physical attack. HP is releasing firmware and guidance to mitigate these potential vulnerabilities. Desktop Workstation mitigation f...
Ransomware attack on MSI led to compromised Intel Boot Guard private keys
On April 7, 2023 MSI Micro-Star International released a statement confirming a cyberattack on part of its information systems. While the statement does not reveal a lot of tangible information, this snippet is important: "MSI urges users to obtain firmware/BIOS updates only from its official...
2023.1 IPU - Intel® Xeon® Processor Advisory
Summary: A potential security vulnerability in some Intel® Xeon® Processors with Intel® Software Guard Extensions SGX may allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2022-33196 Description: Incorrec...
2023.1 IPU - BIOS Advisory
Summary: Potential security vulnerabilities in the BIOS firmware and Intel® Trusted Execution Technology TXT Secure Initialization SINIT Authenticated Code Modules ACM for some Intel® Processors may allow escalation of privilege. Intel is releasing BIOS updates to mitigate these potential...
CVE-2022-27537
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate these potential vulnerabilities...
CVE-2022-27538
A potential Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in the BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability...
CVE-2022-27537
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate these potential vulnerabilities...