2 matches found
CVE-2023-26299
CVE-2023-26299 describes a potential TOCTOU vulnerability in HP PCs that use AMI UEFI firmware (system BIOS), which could allow arbitrary code execution. The issue stems from how TOCTOU could be exploited on affected systems, with HP/AMI providing mitigations via firmware updates. Connected docum...
CVE-2023-26299
A potential Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in certain HP PC products using AMI UEFI Firmware system BIOS, which might allow arbitrary code execution. AMI has released updates to mitigate the potential vulnerability...