Lucene search
+L

5632 matches found

HPE Security Bulletins
HPE Security Bulletins
added 2026/04/14 12:0 a.m.3 views

HPESBHF05034 rev.1 - Certain HPE ProLiant AMD DL/XL Servers Using Certain AMD EPYC Processors, AMD-SB-7054: Incorrect use of LocateProtocol Service of the EFI_BOOT_Services table in SMI Handler, Local Arbitrary Code Execution Vulnerability

Potential Security Impact: Local: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant Compute DL325 Gen12 - Prior to 1.4001-09-2026 HPE ProLiant Compute DL345 Gen12 - Prior to 1.4001-09-2026 HPE ProLiant DL145 Gen11 - Prior to 1.8002-06-2026 HPE...

7.5CVSS7AI score0.00145EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2026/04/14 12:0 a.m.5 views

HPESBHF05035 rev.1 - Certain HPE ProLiant AMD Servers Using Certain AMD EPYC Processors, AMD-SB-3034: SEV-SNP Routing Misconfiguration, Local Compromise of System Integrity Vulnerability

Potential Security Impact: Local: Compromise of System Integrity SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant Compute DL325 Gen12 - Prior to 1.4001-09-2026 HPE ProLiant Compute DL345 Gen12 - Prior to 1.4001-09-2026 HPE ProLiant DL145 Gen11 - Prior to 1.8002-06-2026...

5.9CVSS6.1AI score0.00108EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2026/04/14 12:0 a.m.4 views

HPESBHF05036 rev.1 - Certain HPE ProLiant AMD DL/XL Servers Using Certain AMD EPYC Processors, AMD-SB-3016: IOMMU Write Buffer Vulnerability, Loss of Confidential Guest Integrity Vulnerability

Potential Security Impact: Local: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL145 Gen11 - Prior to 1.7008-07-2025 HPE ProLiant DL325 Gen11 Server - Prior to 2.7008-07-2025 HPE ProLiant DL345 Gen11 Server - Prior to 2.7008-07-2025 HPE ProLiant DL3...

5.3CVSS6.1AI score
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2026/04/10 12:0 a.m.3 views

HPESBHF05015 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-01314, 2025.4 IPU, Intel TDX Module Advisory, Local Escalation of Privilege Vulnerability

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen11 - Prior to SimpliVity Gen11 Support Pack v20260318 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2025-22885 |...

5.6CVSS6.1AI score0.00133EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2026/04/09 12:0 a.m.3 views

HPESBHF05030 rev.1 - HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Platform Using Certain Intel Processor BIOS, INTEL-SA-01234, 2025.3 IPU, UEFI Reference Firmware Advisory, Multiple Vulnerabilities

Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Superdome Flex Server - Prior to v4.10.18 HPE Superdome Flex 280 Server - Prior to v2.05.12 HPE Compute Scale-up Server 3200 - Prior to v1.60.88...

8.7CVSS6.1AI score0.00127EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 2:57 p.m.5 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS6.1AI score0.0013EPSS
Exploits0References1
Hewlett-Packard
Hewlett-Packard
added 2026/03/24 12:0 a.m.9 views

Insyde BIOS SMM Memory Corruption Security Update

A potential security vulnerability has been identified in certain HP PC products using Insyde BIOS InsydeH20 UEFI Firmware, which might allow arbitrary code execution. Insyde has released mitigation for the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs...

8.2CVSS6AI score0.00129EPSS
Exploits0Affected Software20
Tenable Nessus
Tenable Nessus
added 2026/03/17 12:0 a.m.4 views

EulerOS Virtualization 2.12.1 : edk2 (EulerOS-SA-2026-1471)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful...

7CVSS6.4AI score0.0023EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.6 views

EulerOS Virtualization 2.12.0 : edk2 (EulerOS-SA-2026-1528)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful...

7CVSS6.4AI score0.0023EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2026-1528)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS5.8AI score0.0023EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.7 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2026-1471)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS5.8AI score0.0023EPSS
Exploits0References2
NVD
NVD
added 2026/03/11 9:16 p.m.6 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS0.0013EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 8:21 p.m.2 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS6AI score0.0013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 8:21 p.m.3 views

CVE-2026-0940

A potential improper initialization vulnerability was reported in the BIOS of some ThinkPads that could allow a local privileged user to modify data and execute arbitrary code...

8.4CVSS6AI score0.0013EPSS
Exploits0References2
CVE
CVE
added 2026/03/11 8:21 p.m.22 views

CVE-2026-0940

CVE-2026-0940 concerns an improper initialization vulnerability in the BIOS of some ThinkPads. It could let a local privileged user modify data and execute arbitrary code. Affected software/hardware: ThinkPad BIOS firmware (on affected ThinkPad models). Root cause: improper initialization. Impact...

8.4CVSS6AI score0.0013EPSS
Exploits0References1
Lenovo
Lenovo
added 2026/03/10 1:41 p.m.9 views

Multi-Vendor BIOS Security Vulnerabilities (March 2026) - Lenovo Support US

No description provided...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/09 10:1 a.m.9 views

CLSA-2026-1773050498 Fix CVE(s): CVE-2025-10230

SECURITY UPDATE: remote command execution via unsanitized WINS hook NetBIOS name handling in Samba AD DC - debian/patches/CVE-2025-10230.patch: validate NetBIOS names in source4 WINS hook to prevent shell metacharacter injection - debian/patches/CVE-2025-10230-test.patch: add torture tests for WI...

10CVSS7.6AI score0.39858EPSS
Exploits2References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/03/02 2:46 a.m.11 views

Out-of-bounds write vulnerability in Fujitsu BIOS Driver (fbiosdrv.sys)

Overview Fujitsu BIOS Driver fbiosdrv.sys provided by Fujitsu Limited contains the following vulnerability. Out-of-bounds Write CWE-787 - CVE-2025-65001 Fujitsu Limited reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact Receiving a specially crafted reque...

8.2CVSS6.3AI score0.00145EPSS
Exploits0References5
Amd
Amd
added 2026/02/24 12:0 a.m.7 views

Guest Initiated Machine Check Errors

Summary AMD received a report from the security team at Amazon Web Services AWS indicating that it may be possible for guest VMs to cause a crash of a host system. By flooding the host system with a large number of malformed System Management Interrupts SMIs, it may be possible for a guest VM to...

8.3CVSS5.4AI score0.00247EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2026/02/24 12:0 a.m.3 views

HPESBHF05023 rev.1 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-7059: Guest Initiated Machine Check Errors, Denial of Service Vulnerability

Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen11 - Prior to SimpliVity Support Pack SVTSP Gen11 v20260116 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2023-31364 |...

8.3CVSS6.1AI score0.00247EPSS
Exploits0
Rows per page
Query Builder