Lucene search
K

6 matches found

Prion
Prion
added 2022/09/20 6:15 p.m.15 views

Memory corruption

A potential attacker can execute an arbitrary code at the time of the PEI phase and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines VMs and bypassing memory isolation and...

4CVSS8.1AI score0.00402EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2022/09/20 6:15 p.m.28 views

Memory corruption

A potential attacker can execute an arbitrary code at the time of the PEI phase and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines VMs and bypassing memory isolation and...

4CVSS8.1AI score0.00311EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/09/20 5:35 p.m.56 views

CVE-2022-40246

CVE-2022-40246 concerns the SbPei module and a byte-write during the PEI phase (specifically on S3 resume) that can influence subsequent boot stages. Affected component is SbPei; root cause is arbitrary one-byte write at an address during PEI, enabling mitigations bypass, disclosure of physical m...

7.2CVSS6.8AI score0.00463EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/20 5:35 p.m.5 views

CVE-2022-26873 The stack buffer overflow vulnerability in PlatformInitAdvancedPreMem leads to arbitrary code execution during PEI phase.

A potential attacker can execute an arbitrary code at the time of the PEI phase and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines VMs and bypassing memory isolation and...

7.2AI score0.00402EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/09/20 5:35 p.m.41 views

CVE-2022-26873 The stack buffer overflow vulnerability in PlatformInitAdvancedPreMem leads to arbitrary code execution during PEI phase.

A potential attacker can execute an arbitrary code at the time of the PEI phase and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines VMs and bypassing memory isolation and...

8.4AI score0.00402EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/09/20 12:0 a.m.5 views

PT-2022-25307 · Unknown · S3Resume2Pei

Name of the Vulnerable Software and Affected Versions: S3Resume2Pei affected versions not specified Description: A potential attacker can execute arbitrary code during the PEI phase, influencing subsequent boot stages. This can lead to bypassing mitigations, disclosure of physical memory contents...

8.2CVSS8.1AI score0.00311EPSS
Exploits1References4
Rows per page
Query Builder