Lucene search
K

6 matches found

Prion
Prion
added 2023/10/19 8:15 p.m.20 views

Design/Logic Flaw

An issue was discovered in TrEEConfigDriver in Insyde InsydeH2O with kernel 5.0 through 5.5. It can report false TPM PCR values, and thus mask malware activity. Devices use Platform Configuration Registers PCRs to record information about device and software configuration to ensure that the boot...

2.1CVSS5.1AI score0.00733EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/10/19 12:0 a.m.56 views

CVE-2023-30633

CVE-2023-30633 affects Insyde InsydeH2O’s TrEEConfigDriver (kernel 5.0–5.5). The issue allows reporting of false TPM PCR values, enabling a device to masquerade as healthy by extending arbitrary data into PCR banks. Impact depends on PCR integrity, potentially masking malware activity; exploit re...

5.3CVSS4.8AI score0.00212EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2021/10/21 10:49 a.m.9 views

CVE-2021-42299

creationtimestamp| type| source ---|---|--- 2021-10-21 10:49:02+00:00| published-proof-of-concept| https://t.me/hackertrick/320 2021-10-21 13:11:26+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/4566 2023-10-20 00:34:52+00:00| seen| https://t.me/cibsecurity/72631...

6.1CVSS5.7AI score0.00733EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/10/20 9:15 p.m.51 views

CVE-2021-42299 Microsoft Surface Pro 3 Security Feature Bypass Vulnerability

...

5.6CVSS5.7AI score0.00733EPSS
Exploits0References1
CVE
CVE
added 2021/10/20 9:15 p.m.103 views

CVE-2021-42299

CVE-2021-42299 affects Microsoft Surface Pro 3 and is described as a security feature bypass vulnerability. From the provided data, the vulnerability is local in scope (attack vector LOCAL, no user interaction required per CVSS), with partial confidentiality and integrity impact and no availabili...

6.1CVSS5.4AI score0.00733EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2021/10/20 7:20 a.m.80 views

Microsoft Warns of New Security Flaw Affecting Surface Pro 3 Devices

Microsoft has published a new advisory warning of a security bypass vulnerability affecting Surface Pro 3 convertible laptops that could be exploited by an adversary to introduce malicious devices within enterprise networks and defeat the device attestation mechanism. Tracked as CVE-2021-42299 CV...

6.1CVSS2.1AI score0.00733EPSS
Exploits0
Rows per page
Query Builder