28 matches found
CVE-2023-31331
Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potentially lead to loss of integrity or availability...
EUVD-2021-13159
Malware in sbrugna...
EUVD-2021-13149
Malware in sbrugna...
EUVD-2021-33447
Malicious code in bioql PyPI...
EUVD-2023-24770
Malicious code in bioql PyPI...
CVE-2023-31331
Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potentially lead to loss of integrity or availability...
CVE-2023-31331
CVE-2023-31331 describes improper access control in the DRTM firmware of AMD client/embedded processors. A local, privileged attacker could perform multiple driver initializations, causing stack memory corruption with potential loss of integrity or availability. CVSSv3.1 base score is 3.0 (LOW) w...
CVE-2023-31331
Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potentially lead to loss of integrity or availability...
CVE-2023-20591
Improper re-initialization of IOMMU during the DRTM event may permit an untrusted platform configuration to persist, allowing an attacker to read or modify hypervisor memory, potentially resulting in loss of confidentiality, integrity, and availability...
CVE-2023-20591
Improper re-initialization of IOMMU during the DRTM event may permit an untrusted platform configuration to persist, allowing an attacker to read or modify hypervisor memory, potentially resulting in loss of confidentiality, integrity, and availability...
CVE-2023-20591
Improper re-initialization of IOMMU during the DRTM event may permit an untrusted platform configuration to persist, allowing an attacker to read or modify hypervisor memory, potentially resulting in loss of confidentiality, integrity, and availability...
CVE-2023-20591
CVE-2023-20591 : Improper re-initialization of the IOMMU during a DRTM event may allow an untrusted platform configuration to persist, enabling an attacker to read or modify hypervisor memory and potentially compromise confidentiality, integrity, and availability. The vulnerability is discussed i...
PT-2024-11959 · Drtm +2 · Drtm +2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves improper re-initialization of IOMMU during the DRTM event, which may permit an untrusted platform configuration to persist. This coul...
CVE-2021-46791
Insufficient input validation during parsing of the System Management Mode SMM binary may allow a maliciously crafted SMM executable binary to corrupt Dynamic Root of Trust for Measurement DRTM user application memory that may result in a potential denial of service...
CVE-2021-26343
Insufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to disclose the contents of sensitive memory which may result in information disclosure...
Information disclosure
Insufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to disclose the contents of sensitive memory which may result in information disclosure...
Input validation
Insufficient input validation during parsing of the System Management Mode SMM binary may allow a maliciously crafted SMM executable binary to corrupt Dynamic Root of Trust for Measurement DRTM user application memory that may result in a potential denial of service...
CVE-2021-46791
Insufficient input validation during parsing of the System Management Mode SMM binary may allow a maliciously crafted SMM executable binary to corrupt Dynamic Root of Trust for Measurement DRTM user application memory that may result in a potential denial of service...
CVE-2021-46791
CVE-2021-46791 describes insufficient input validation during parsing of the System Management Mode (SMM) binary, potentially allowing a malicious SMM executable to corrupt DRTM user application memory and cause a denial of service. The vulnerability is associated with AMD’s System Management Mod...
CVE-2021-26343
Insufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to disclose the contents of sensitive memory which may result in information disclosure...