18 matches found
CVE-2022-35407
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. A stack buffer overflow leads to arbitrary code execution in the SetupUtility driver on Intel platforms. An attacker can change the values of certain UEFI variables. If the size of the second variable exceeds the size of the...
EUVD-2025-24531
Malicious code in bioql PyPI...
EUVD-2022-38297
Malicious code in bioql PyPI...
EUVD-2023-38496
Malicious code in bioql PyPI...
PT-2025-32959 · Unknown · Setuputility
Name of the Vulnerable Software and Affected Versions: SetupUtility affected versions not specified Description: A buffer overflow exists in the SetupUtility module. An attacker with local privileged access can execute arbitrary code by exploiting this issue. Recommendations: At the moment, there...
CVE-2023-34419
A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code...
CVE-2023-34419
A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code...
Buffer overflow
A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code...
CVE-2023-34419
CVE-2023-34419 affects Lenovo Notebook products via the SetupUtility driver. A buffer overflow in the SetupUtility component may allow a local attacker with elevated privileges to execute arbitrary code. The CVSS metrics (LOCAL access, HIGH integrity/confidentiality/availability impact, PR:H, UI:...
CVE-2023-34419
A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code...
Lenovo Notebook 安全漏洞
Lenovo Notebook is a laptop computer from Lenovo, a Chinese company. A security vulnerability exists in Lenovo Notebook, which stems from a buffer overflow vulnerability found in the SetupUtility driver...
PT-2023-24865 · Lenovo · Lenovo Notebook
Name of the Vulnerable Software and Affected Versions: Lenovo Notebook products affected versions not specified Description: A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products, which may allow an attacker with local access and elevated privileges to...
CVE-2022-35407
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. A stack buffer overflow leads to arbitrary code execution in the SetupUtility driver on Intel platforms. An attacker can change the values of certain UEFI variables. If the size of the second variable exceeds the size of the...
CVE-2022-35407
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. A stack buffer overflow leads to arbitrary code execution in the SetupUtility driver on Intel platforms. An attacker can change the values of certain UEFI variables. If the size of the second variable exceeds the size of the...
PT-2022-22808 · Insyde · Insydeh2O
Name of the Vulnerable Software and Affected Versions: Insyde InsydeH2O versions 5.0 through 5.5 Description: A stack buffer overflow issue in the SetupUtility driver on Intel platforms leads to arbitrary code execution. This allows an attacker to change the values of certain UEFI variables by...
CVE-2022-35407
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. A stack buffer overflow leads to arbitrary code execution in the SetupUtility driver on Intel platforms. An attacker can change the values of certain UEFI variables. If the size of the second variable exceeds the size of the...
CVE-2022-35407
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. A stack buffer overflow leads to arbitrary code execution in the SetupUtility driver on Intel platforms. An attacker can change the values of certain UEFI variables. If the size of the second variable exceeds the size of the...
CVE-2022-35407
The CVE concerns InsydeH2O’s SetupUtility driver on Intel platforms, affected versions 5.0–5.5. A stack buffer overflow from handling two UEFI variables allows arbitrary code execution when the second variable exceeds the first, enabling modification of certain UEFI variables. Impact is local, wi...