Lucene search
K

77 matches found

Positive Technologies
Positive Technologies
added 2024/02/13 12:0 a.m.4 views

PT-2024-2748

Name of the Vulnerable Software and Affected Versions HP Workstation PCs affected versions not specified Description A potential security issue has been identified in the system BIOS for certain HP Workstation PCs, which might allow escalation of privilege, arbitrary code execution, or denial of...

7.9CVSS7AI score0.00193EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/11/14 9:24 p.m.18 views

CVE-2023-39537 Improper input validation in BIOS TCG2

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

7.5CVSS6.7AI score0.00206EPSS
Exploits0References1
Lenovo
Lenovo
added 2023/10/10 3:42 p.m.6 views

Multi-vendor BIOS Security Vulnerabilities (October 2023) - Lenovo Support US

No description provided...

7.3AI score
Exploits0
Lenovo
Lenovo
added 2023/08/07 9:2 p.m.4 views

Multi-vendor BIOS Security Vulnerabilities (August 2023) - Lenovo Support US

No description provided...

7AI score
Exploits0
Prion
Prion
added 2023/06/23 10:15 a.m.27 views

Input validation

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable...

4CVSS6.3AI score0.00168EPSS
Exploits0References1Affected Software434
NVD
NVD
added 2023/06/13 5:15 p.m.31 views

CVE-2022-31638

Potential time-of-check to time-of-use TOCTOU vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure...

7.8CVSS8.2AI score0.00138EPSS
Exploits0References1
Prion
Prion
added 2023/06/12 7:15 p.m.27 views

Information disclosure

Potential Time-of-Check to Time-of Use TOCTOU vulnerabilities have been identified in the HP BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure...

3.5CVSS7.8AI score0.00138EPSS
Exploits0References1Affected Software387
F5 Networks
F5 Networks
added 2023/02/21 6:33 p.m.47 views

K24359631: Intel BIOS firmware vulnerability CVE-2022-21198

Security Advisory Description Time-of-check time-of-use race condition in the BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2022-21198 Impact There is no impact; F5 products are not affected by this...

7.9CVSS6.5AI score0.00131EPSS
Exploits0
NVD
NVD
added 2023/02/01 7:15 a.m.41 views

CVE-2021-3809

Potential security vulnerabilities have been identified in the BIOS UEFI Firmware for certain HP PC products, which might allow arbitrary code execution. HP is releasing firmware updates to mitigate these potential vulnerabilities...

7.8CVSS8.2AI score0.00245EPSS
Exploits0References1
Prion
Prion
added 2023/02/01 7:15 a.m.24 views

Design/Logic Flaw

Potential security vulnerabilities have been identified in the BIOS UEFI Firmware for certain HP PC products, which might allow arbitrary code execution. HP is releasing firmware updates to mitigate these potential vulnerabilities...

4.3CVSS8.1AI score0.00245EPSS
Exploits0References1Affected Software181
OSV
OSV
added 2022/09/20 6:15 p.m.3 views

CVE-2022-40250

An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environment more privileged than operating system OS and completely isolated from it. Running arbitrary code in SMM additionally bypasses SMM-based SPI...

8.8CVSS6.1AI score0.00448EPSS
Exploits1References3
NVD
NVD
added 2022/09/06 9:15 p.m.24 views

CVE-2022-26859

Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM...

7CVSS0.00129EPSS
Exploits0References1
Intel
Intel
added 2022/08/09 12:0 a.m.36 views

2022.2 IPU – BIOS Advisory

Summary: A potential security vulnerability in the BIOS firmware for some Intel® Processors may allow escalation of privilege. Intel is releasing BIOS updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2021-33060 Description: Out-of-bounds write in the BIOS firmwa...

7.8CVSS7.7AI score0.00251EPSS
Exploits0
Cvelist
Cvelist
added 2022/06/23 5:55 p.m.23 views

CVE-2022-26863

Prior Dell BIOS versions contain an Input Validation vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls in SMM...

6.3CVSS7.7AI score0.00266EPSS
Exploits0References1
Intel
Intel
added 2022/05/13 12:0 a.m.142 views

2022.1 IPU – BIOS Advisory

Summary: Potential security vulnerabilities in the BIOS firmware or BIOS authenticated code module for some Intel® Processors may allow escalation of privilege or information disclosure. Intel is releasing BIOS updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID:...

7.8CVSS7.3AI score0.00268EPSS
Exploits0
NVD
NVD
added 2022/05/12 5:15 p.m.28 views

CVE-2021-33124

Out-of-bounds write in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

7.2CVSS0.00252EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/05/12 4:36 p.m.25 views

CVE-2021-0159

Improper input validation in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

7.7AI score0.00259EPSS
Exploits0References2
Lenovo
Lenovo
added 2022/05/10 9:50 p.m.9 views

Multi-vendor BIOS Security Vulnerabilities (May 2022) - Lenovo Support US

No description provided...

5.1AI score
Exploits0
OSV
OSV
added 2022/03/11 6:15 p.m.3 views

CVE-2022-23927

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure...

8.2CVSS5.8AI score0.0042EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/02 12:0 a.m.14 views

UX360CA BIOS through 303 on ASUS Code Execution Vulnerability

The Asus UX360CA BIOS through 303 is a laptop from Asus Japan. The UX360CA BIOS through 303 on ASUS contains a security vulnerability that can be exploited by an attacker to overwrite almost any physical memory location and execute arbitrary code in the SMM...

8.2CVSS7.4AI score0.00937EPSS
Exploits2References1
Rows per page
Query Builder