Lucene search
K

128 matches found

CVE
CVE
added 2022/11/14 12:0 a.m.74 views

CVE-2022-33983

CVE-2022-33983 describes a TOCTOU DMA attack affecting the NvmExpressLegacy SMI handler used by the NvmExpressLegacy driver, potentially enabling SMRAM corruption. The issue is triggered by DMA transactions targeting input buffers for the software SMI handler, with the root cause tied to TOCTOU c...

7CVSS6.9AI score0.00158EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/11/14 12:0 a.m.69 views

CVE-2022-33984

The CVE-2022-33984 entry describes a TOCTOU DMA vulnerability affecting the SdMmcDevice SMI handler that can corrupt SMRAM. Connected sources expand to multiple TOCTOU flaws in Insyde-managed firmware (various SMI handlers such as SdHostDriver, FvbServicesRuntimeDxe, IdeBusDxe) with CVEs 2022-307...

7CVSS6.8AI score0.00151EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2022/11/14 12:0 a.m.71 views

CVE-2022-33905

CVE-2022-33905 describes a TOCTOU vulnerability in the AhciBusDxe driver’s SMI input buffers, where DMA targeting those buffers could cause SMRAM corruption. The issue, attributed to Insyde engineering with Intel’s iSTARE context, is fixed in Linux kernels: 5.2 (05.27.23), 5.3 (05.36.23), 5.4 (05...

7CVSS6.9AI score0.00132EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/11/14 12:0 a.m.25 views

CVE-2022-33909

DMA transactions which are targeted at input buffers used for the HddPassword software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the HddPassword driver could cause SMRAM corrupti...

7.1AI score0.00132EPSS
Exploits0References2
CVE
CVE
added 2022/11/14 12:0 a.m.72 views

CVE-2022-32266

The connected records provide concrete details for CVE-2022-32266 affecting Insyde InsydeH2O. The vulnerability arises from DMA attacks against the parameter buffer used by the PcdSmmDxe software SMI handler, enabling a TOCTOU race condition that can corrupt other ACPI fields and adjacent memory....

6.4CVSS6.3AI score0.00174EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/14 12:0 a.m.9 views

CVE-2022-33984

DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the SdMmcDevice driver could cause SMRAM corrupti...

7.2AI score0.00151EPSS
Exploits0References3
Prion
Prion
added 2022/07/01 12:15 a.m.19 views

Race condition

Automox Agent for macOS before version 39 was vulnerable to a time-of-check/time-of-use TOCTOU race-condition attack during the agent install process...

6.9CVSS6.7AI score0.00165EPSS
Exploits0References2Affected Software1
seebug.org
seebug.org
added 2013/03/10 12:0 a.m.44 views

Apache Commons FileUpload不安全临时文件创建漏洞(CVE-2013-0248)

BUGTRAQ ID: 58326 CVECAN ID: CVE-2013-0248 Apache Commons FileUpload软件包可以向小服务程序和Web应用添加高性能的文件上传功能。 Apache Commons FileUpload v1.0 - 1.2.2在上传文件过程中,会将上传的文件临时存在磁盘上,默认的位于系统的tmp目录内。因为临时文件具有可预测的文件名,并存储在可公开写入的位置,这就易于受到TOCTOU攻击。成功攻击需要攻击者对tmp目录具有写访问权限。将存储位置设在不能公开写入的位置,可以防止此攻击。 0 Apache Group Commons...

3.3CVSS0.0068EPSS
Exploits1
Rows per page
Query Builder