Lucene search
K

77 matches found

NVD
NVD
added 2020/06/24 5:15 a.m.20 views

CVE-2020-10278

The BIOS onboard MiR's Computer is not protected by password, therefore, it allows a Bad Operator to modify settings such as boot order. This can be leveraged by a Malicious operator to boot from a Live Image...

6.1CVSS0.00966EPSS
Exploits0References1
Lenovo
Lenovo
added 2020/06/04 8:26 p.m.157 views

Multi-vendor BIOS Security Vulnerabilities (June 2020) - Lenovo Support US

Lenovo Security Advisory: LEN-30042 Potential Impact: Privilege escalation, denial of service, information disclosure Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2020-0528, CVE-2020-0529, CVE-2020-8320, CVE-2020-8321, CVE-2020-8322, CVE-2020-8323, CVE-2020-8333, CVE-2020-833...

7.2CVSS2.3AI score0.00347EPSS
Exploits0
Lenovo
Lenovo
added 2019/11/05 6:56 a.m.46 views

Multi-vendor BIOS Security Vulnerabilities - Lenovo Support US

No description provided...

6.4AI score
Exploits0
Lenovo
Lenovo
added 2019/11/04 2:48 p.m.122 views

Intel Graphics Vulnerabilities - Lenovo Support US

Lenovo Security Advisory: LEN-28235 Potential Impact: Escalation of Privilege, Denial of Service, Information Disclosure Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2019-0154, CVE-2019-0155, , CVE-2019-11089, CVE-2019-11111, CVE-2019-11112, CVE-2019-11113, CVE-2019-14574,...

7.2CVSS3.9AI score0.00668EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/07/11 12:0 a.m.7 views

The vulnerability of UEFI (BIOS) software on HP workstations allows a hacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of UEFI BIOS software on HP workstations is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information, provided that the TPM module is disabled...

9CVSS5.5AI score0.01452EPSS
Exploits0References3Affected Software4
Prion
Prion
added 2018/10/03 8:29 p.m.13 views

Design/Logic Flaw

A BIOS password extraction vulnerability has been reported on certain consumer notebooks with firmware F.22 and others. The BIOS password was stored in CMOS in a way that allowed it to be extracted. This applies to consumer notebooks launched in early 2014...

2.1CVSS4.8AI score0.01065EPSS
Exploits0References1Affected Software31
NVD
NVD
added 2018/05/11 7:29 p.m.18 views

CVE-2009-5151

The stub component of Absolute Computrace Agent V70.785 executes code from a disk's inter-partition space without requiring a digital signature for that code, which allows attackers to execute code on the BIOS. This allows a privileged local user to achieve persistent control of BIOS behavior,...

7.2CVSS6.6AI score0.00501EPSS
Exploits1References1
Intel
Intel
added 2017/10/10 12:0 a.m.20 views

Intel® NUC BIOS Security Updates

Summary: This update mitigates multiple vulnerabilities related to security features in certain Intel® NUC system firmware BIOS. Description: BIOS Administrator and User password bypass: Insufficient protection of password storage in system firmware for NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH,...

8.4CVSS7.8AI score0.00865EPSS
Exploits0
Lenovo
Lenovo
added 2016/08/14 12:0 a.m.17 views

BIOS EFI Driver SMM Code Execution Vulnerability - Lenovo Support MY

No description provided...

8.4AI score
Exploits0
Lenovo
Lenovo
added 2016/07/22 12:0 a.m.217 views

S3 Boot Script Protection

Lenovo Security Advisory: LEN-2014-006 Potential Impact: Elevation of Privilege Severity: Medium Summary: Certain firmware implementations may not correctly protect memory that stores the BIOS S3 Boot Script when a system is suspended. Exploitation of such vulnerabilities could potentially lead t...

4.6CVSS6.4AI score
Exploits0
ThreatPost
ThreatPost
added 2012/08/24 5:27 p.m.12 views

NIST Offers Guidelines for Securing BIOS

As security defenses have advanced and become more adaptive in the last decade, malware authors and attackers have had to respond, looking for new ways to get their malicious software onto PCs or exploit previously unknown vulnerabilities. One target is the system BIOS, the low-level instruction...

0.7AI score
Exploits0References3
securityvulns
securityvulns
added 2008/09/01 12:0 a.m.29 views

[IVIZ-08-002] Hewlett-Packard BIOS Plain Text Password Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------- iViZ Security Advisory 08-002 25/08/2008 - ----------------------------------------------------------------------- iViZ Techno Solutions Pvt. Ltd. http://www.ivizsecurity.com -...

7AI score
Exploits0
securityvulns
securityvulns
added 2008/09/01 12:0 a.m.59 views

[IVIZ-08-004] Intel BIOS Plain Text Password Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------- iViZ Security Advisory 08-004 25/08/2008 - ----------------------------------------------------------------------- iViZ Techno Solutions Pvt. Ltd. http://www.ivizsecurity.com -...

7.1AI score
Exploits0
myhack58
myhack58
added 2006/01/07 12:0 a.m.25 views

Breakthrough in the users permissions broken star Lann-bug warning-the black bar safety net

users permissions are really so low? Our school room has restore card, USB are also sealed, and the BIOS has a super-long password, the external network is also nowhere. Installed VB and the star LAN multimedia network classroom. But with my generation is not going to use VB coding to a broken...

Exploits0
NVD
NVD
added 2005/12/11 9:3 p.m.19 views

CVE-2005-4175

Insyde BIOS V190 does not clear the keyboard buffer after reading the BIOS password during system startup, which allows local administrators or users to read the password directly from physical memory...

2.1CVSS6.3AI score0.00386EPSS
Exploits0References6
Cvelist
Cvelist
added 2005/12/11 9:0 p.m.40 views

CVE-2005-4175

Insyde BIOS V190 does not clear the keyboard buffer after reading the BIOS password during system startup, which allows local administrators or users to read the password directly from physical memory...

6.3AI score0.00386EPSS
Exploits0References6
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.52 views

bios-backdoors.txt

Date: Tue, 3 Nov 1998 13:22:20 -0600 From: Paul L Schmehl To: [email protected] Subject: BIOS Backdoor Passwords I've been out of the office since posting the comments about the ineffectiveness of BIOS passwords, and I returned to find to my surprise numerous requests for informati...

7.4AI score
Exploits0
Rows per page
Query Builder