Lucene search
K

58 matches found

CVE
CVE
added 2022/09/20 5:35 p.m.71 views

CVE-2022-26873

CVE-2022-26873 affects AMI Aptio 5.x PlatformInitAdvancedPreMem. The issue is described as a stack buffer overflow in PlatformInitAdvancedPreMem that can allow arbitrary code execution during the PEI phase, potentially enabling mitigation bypass, memory contents disclosure, VM secrets access, and...

8.2CVSS8.2AI score0.00402EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/20 5:35 p.m.5 views

CVE-2022-26873 The stack buffer overflow vulnerability in PlatformInitAdvancedPreMem leads to arbitrary code execution during PEI phase.

A potential attacker can execute an arbitrary code at the time of the PEI phase and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines VMs and bypassing memory isolation and...

7.2AI score0.00402EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/09/20 12:0 a.m.6 views

PT-2022-25303 · Sbpei · Sbpei

Name of the Vulnerable Software and Affected Versions: SbPei affected versions not specified Description: A potential attacker can write one byte by arbitrary address at the time of the PEI phase, only during S3 resume boot mode, and influence the subsequent boot stages. This can lead to...

7.2CVSS6.8AI score0.00463EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/09/20 12:0 a.m.6 views

PT-2022-25307 · Unknown · S3Resume2Pei

Name of the Vulnerable Software and Affected Versions: S3Resume2Pei affected versions not specified Description: A potential attacker can execute arbitrary code during the PEI phase, influencing subsequent boot stages. This can lead to bypassing mitigations, disclosure of physical memory contents...

8.2CVSS8.1AI score0.00311EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2018/08/29 6:30 p.m.5 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.7AI score0.05577EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2018/08/16 6:10 a.m.4 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.7AI score0.05577EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2018/08/16 12:0 a.m.9 views

Intel processors’ vulnerability, related to the possibility of speculative execution commands, allows attackers to circumvent the memory isolation mechanism of virtual machines.

Intel processors’ vulnerabilities are related to the possibility of speculative execution of instructions. Exploiting these vulnerabilities can allow attackers to gain access to the memory of the supervisor or other virtual machines by overcoming the mechanism that isolates virtual machine memory...

7.1CVSS7AI score0.08101EPSS
Exploits0References10Affected Software37
RedHat Linux
RedHat Linux
added 2018/08/15 3:25 p.m.6 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.7AI score0.05577EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2018/08/15 10:20 a.m.6 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.7AI score0.05577EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2018/08/14 8:53 p.m.10 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.8AI score0.08101EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2018/08/14 8:33 p.m.4 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.7AI score0.05577EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2018/08/14 8:18 p.m.11 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.7AI score0.05577EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2018/08/14 6:49 p.m.4 views

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

5.6CVSS6.7AI score0.05577EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2018/07/10 5:36 p.m.7 views

hw: cpu: speculative store bypass

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions a commonly used performance optimization. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the...

5.5CVSS7AI score0.60631EPSS
Exploits2References9
The Hacker News
The Hacker News
added 2018/02/08 11:13 a.m.22 views

Intel Releases New Spectre Patch Update for Skylake Processors

After leaving million of devices at risk of hacking and then rolling out broken patches, Intel has now released a new batch of security patches only for its Skylake processors to address one of the Spectre vulnerabilities Variant 2. For those unaware, Spectre Variant 1, Variant 2 and Meltdown...

6.9AI score
Exploits0
CNVD
CNVD
added 2018/01/04 12:0 a.m.1 views

Spectre Vulnerability in CPU Processor Kernel

CPU hardware is a set of firmware that runs in the CPU Central Processing Unit to manage and control the CPU. The Spectre vulnerability exists in the CPU processor kernel, where an attacker can use a malicious application to gain access to private data that should be quarantined due to Intel's...

5.6CVSS7.9AI score0.84172EPSS
Exploits3References1
Lenovo
Lenovo
added 2016/07/22 12:0 a.m.13 views

Row Hammer Privilege Escalation - Lenovo Support US

No description provided...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2008/03/05 1:56 p.m.2 views

Security: some HVM domain can access another domain memory.

Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for movtorr, which allows a VTi domain to read memory of other domains...

2.1CVSS5.8AI score0.00346EPSS
Exploits1References4
Rows per page
Query Builder