64 matches found
EUVD-2020-1812
Malware in sbrugna...
EUVD-2020-1837
Malware in sbrugna...
EUVD-2020-1853
Malware in sbrugna...
EUVD-2020-1658
Malware in sbrugna...
EUVD-2021-10019
Malware in sbrugna...
EUVD-2020-16770
Malware in sbrugna...
EUVD-2020-1784
Malware in sbrugna...
EUVD-2025-21141
Malicious code in bioql PyPI...
EUVD-2023-25145
Malicious code in bioql PyPI...
EUVD-2024-26773
Malicious code in bioql PyPI...
EUVD-2025-18307
Malicious code in bioql PyPI...
K000152889: Gigabyte UEFI firmware vulnerabilities CVE-2025-7026, CVE-2025-7027, CVE-2025-7028, CVE-2025-7029
Security Advisory Description CVE-2025-7026 A vulnerability in the Software SMI handler SwSmiInputValue 0xB2 allows a local attacker to control the RBX register, which is used as an unchecked pointer in the CommandRcx0 function. If the contents at RBX match certain expected values e.g., '$DB$' or...
CVE-2025-7026
Gigabyte UEFI/Software SMI handler vulnerability (CVE-2025-7026) lets a local attacker control RBX as an unchecked pointer in CommandRcx0. If RBX contents match values like '$DB$' or '2DB$', arbitrary writes to SMRAM are possible, enabling System Management Mode (SMM) privilege escalation and per...
CVE-2025-7027 SMM Arbitrary Write via Dual-Controlled Pointers in CommandRcx1
A vulnerability in the Software SMI handler SwSmiInputValue 0xB2 allows a local attacker to control both the read and write addresses used by the CommandRcx1 function. The write target is derived from an unvalidated UEFI NVRAM variable SetupXtuBufferAddress, while the write content is read from a...
CVE-2025-7027
Gigabyte Gigabyte UEFI SMM vulnerabilities (CVE-2025-7027) allow a local attacker to control both read and write addresses in SMRAM via the SwSmiInputValue 0xB2 handling, using an unvalidated UEFI NVRAM pointer (SetupXtuBufferAddress) and an attacker-controlled RBX-based pointer to perform arbitr...
CVE-2025-24919 Dell ControlVault3/ControlVault3 Plus deserialization of untrusted input vulnerability
A deserialization of untrusted input vulnerability exists in the cvhDecapsulateCmd functionality of Dell ControlVault3 prior to 5.15.10.14 and ControlVault3 Plus prior to 6.2.26.36. A specially crafted ControlVault response to a command can lead to arbitrary code execution. An attacker can...
CVE-2025-24919
Dell ControlVault3 CVE-2025-24919 is a deserialization of untrusted input flaw in cvhDecapsulateCmd (bcmbipdll.dll). A crafted firmware response can cause incorrect parameter handling and memory corruption, enabling arbitrary code execution on the firmware. Affected products: ControlVault3 prior ...
CVE-2025-24919 Dell ControlVault3/ControlVault3 Plus deserialization of untrusted input vulnerability
A deserialization of untrusted input vulnerability exists in the cvhDecapsulateCmd functionality of Dell ControlVault3 prior to 5.15.10.14 and ControlVault3 Plus prior to 6.2.26.36. A specially crafted ControlVault response to a command can lead to arbitrary code execution. An attacker can...
CVE-2024-27230
In ProtocolPsKeepAliveStatusAdapter::getCode of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation...
CVE-2024-53839
In GetCellInfoList of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation...