The vulnerability of the Image Processing Module in the BmpDecoderDxe framework used for creating UEFI patches in InsydeH2O allows a hacker to induce a system failure.
The vulnerability of the Image Processing Module in the InsydeH2O UEFI firmware development framework involves a buffer overflow when processing the PixelHeight and PixelWidth properties of images. Exploiting this vulnerability can allow an attacker to cause system failures...