Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-28982

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.00301EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/13 9:39 p.m.6 views

CVE-2024-21924

SMM callout vulnerability within the AmdPlatformRasSspSmm driver could allow a ring 0 attacker to modify boot services handlers, potentially resulting in arbitrary code execution...

8.2CVSS7.2AI score0.00208EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/13 9:35 p.m.6 views

CVE-2024-0179

A flaw was found in the UEFI module's System Management Mode SMM. SMM callout within the AmdCpmDisplayFeatureSMM driver could allow locally authenticated attackers to overwrite SMRAM, potentially resulting in arbitrary code execution. Mitigation Available mitigation requires updating the BIOS...

8.2CVSS7AI score0.00202EPSS
Exploits0References4
NVD
NVD
added 2025/02/11 9:15 p.m.8 views

CVE-2024-0179

SMM Callout vulnerability within the AmdCpmDisplayFeatureSMM driver could allow locally authenticated attackers to overwrite SMRAM, potentially resulting in arbitrary code execution...

8.2CVSS0.00202EPSS
Exploits0References1
NVD
NVD
added 2025/02/11 9:15 p.m.5 views

CVE-2024-21924

SMM callout vulnerability within the AmdPlatformRasSspSmm driver could allow a ring 0 attacker to modify boot services handlers, potentially resulting in arbitrary code execution...

8.2CVSS0.00208EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/11 8:52 p.m.18 views

CVE-2024-0179

SMM Callout vulnerability within the AmdCpmDisplayFeatureSMM driver could allow locally authenticated attackers to overwrite SMRAM, potentially resulting in arbitrary code execution...

8.2CVSS0.00202EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/11 8:18 p.m.16 views

CVE-2024-21924

SMM callout vulnerability within the AmdPlatformRasSspSmm driver could allow a ring 0 attacker to modify boot services handlers, potentially resulting in arbitrary code execution...

8.2CVSS0.00208EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 4:46 a.m.4 views

CVE-2024-36434

An SMM callout vulnerability was discovered in Supermicro X11DPH-T, X11DPH-Tq, and X11DPH-i motherboards with BIOS firmware before 4.4...

7.5CVSS7.1AI score0.00152EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/09/26 12:0 a.m.28 views

Siemens InsydeH2O SMM Privilege Escalation (CVE-2021-42113)

An issue was discovered in StorageSecurityCommandDxe in Insyde InsydeH2O with Kernel 5.1 before 05.14.28, Kernel 5.2 before 05.24.28, and Kernel 5.3 before 05.32.25. An SMM callout vulnerability allows an attacker to hijack execution flow of code running in System Management Mode. Exploiting this...

8.2CVSS8AI score0.00296EPSS
Exploits0References5
Prion
Prion
added 2022/09/23 6:15 p.m.19 views

Design/Logic Flaw

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. An SMM callout vulnerability in the SMM driver FwBlockServiceSmm, creating SMM, leads to arbitrary code execution. An attacker can replace the pointer to the UEFI boot service GetVariable with a pointer to malware, and then...

4CVSS8.8AI score0.00429EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/09/22 4:15 p.m.4 views

CVE-2022-35408

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. An SMM callout vulnerability in the SMM driver in UsbLegacyControlSmm leads to possible arbitrary code execution in SMM and escalation of privileges. An attacker could overwrite the function pointers in the EFIBOOTSERVICES...

8.2CVSS6.2AI score0.0034EPSS
Exploits1References3
Prion
Prion
added 2022/02/03 2:15 a.m.20 views

Code injection

An issue was discovered in StorageSecurityCommandDxe in Insyde InsydeH2O with Kernel 5.1 before 05.14.28, Kernel 5.2 before 05.24.28, and Kernel 5.3 before 05.32.25. An SMM callout vulnerability allows an attacker to hijack execution flow of code running in System Management Mode. Exploiting this...

4.6CVSS8.1AI score0.00296EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/02/03 1:50 a.m.37 views

CVE-2021-43323

An issue was discovered in UsbCoreDxe in Insyde InsydeH2O with kernel 5.5 before 05.51.45, 5.4 before 05.43.45, 5.3 before 05.35.45, 5.2 before 05.26.45, 5.1 before 05.16.45, and 5.0 before 05.08.45. An SMM callout vulnerability allows an attacker to hijack execution flow of code running in Syste...

8.3AI score0.00351EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/02/03 1:46 a.m.27 views

CVE-2021-42113

An issue was discovered in StorageSecurityCommandDxe in Insyde InsydeH2O with Kernel 5.1 before 05.14.28, Kernel 5.2 before 05.24.28, and Kernel 5.3 before 05.32.25. An SMM callout vulnerability allows an attacker to hijack execution flow of code running in System Management Mode. Exploiting this...

8.4AI score0.00296EPSS
Exploits0References4
CVE
CVE
added 2022/02/03 1:46 a.m.90 views

CVE-2021-42113

StorageSecurityCommandDxe in InsydeH2O firmware (Kernel 5.1 before 05.14.28, Kernel 5.2 before 05.24.28, Kernel 5.3 before 05.32.25) contains an SMM callout vulnerability that can hijack execution flow in System Management Mode and escalate privileges to SMM. The issue is fixed in InsydeH2O kerne...

8.2CVSS8.1AI score0.00296EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2022/02/03 1:27 a.m.35 views

CVE-2021-42060

An issue was discovered in Insyde InsydeH2O Kernel 5.0 through 05.08.41, Kernel 5.1 through 05.16.41, Kernel 5.2 before 05.23.22, and Kernel 5.3 before 05.32.22. An Int15ServiceSmm SMM callout vulnerability allows an attacker to hijack execution flow of code running in System Management Mode...

8.5AI score0.00351EPSS
Exploits0References4
NVD
NVD
added 2022/02/03 12:15 a.m.29 views

CVE-2022-24069

An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.0 before 05.08.41, 5.1 before 05.16.29, 5.2 before 05.26.29, 5.3 before 05.35.29, 5.4 before 05.43.29, and 5.5 before 05.51.29. An SMM callout vulnerability allows an attacker to hijack the execution flow of code running in...

8.2CVSS0.00301EPSS
Exploits0References4
Rows per page
Query Builder