Lucene search
K

183 matches found

RedHat Linux
RedHat Linux
added 2024/05/22 9:52 a.m.6 views

EDK2: integer overflow in CreateHob() could lead to HOB OOB R/W

A flaw was found in the CreateHob function in EDK2. An attacker, leveraging a local network, can initiate an integer overflow leading to a buffer overflow. This issue arises during size alignment within the CreateHob function, requiring activation in the PEI phase. Successful exploitation of this...

7.8CVSS6.2AI score0.00287EPSS
Exploits0References5
CERT
CERT
added 2024/04/30 12:0 a.m.71 views

BMC software fails to validate IPMI session.

Overview The Intelligent Platform Management Interface IPMI implementations in multiple manufacturer's Baseboard Management Controller BMC software are vulnerable to IPMI session hijacking. An attacker with access to the BMC network with IPMI enabled can abuse the lack of session integrity to...

9.1CVSS8.1AI score0.00718EPSS
Exploits0References5
Hewlett-Packard
Hewlett-Packard
added 2024/03/12 12:0 a.m.94 views

HP PC BIOS Pre-boot DMA Protection Security Update

A potential security vulnerability has been reported in the system BIOS of certain HP PC products, which might allow memory tampering. HP is releasing mitigation for the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate th...

8.2CVSS7.2AI score0.00178EPSS
Exploits0Affected Software87
OSV
OSV
added 2023/12/22 6:15 p.m.5 views

CVE-2023-43088

Dell Client BIOS contains a pre-boot direct memory access DMA vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device...

6.8CVSS6.1AI score0.00276EPSS
Exploits0References1
Prion
Prion
added 2023/12/22 6:15 p.m.16 views

Design/Logic Flaw

Dell Client BIOS contains a pre-boot direct memory access DMA vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device...

4.6CVSS7.6AI score0.00276EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/22 6:0 p.m.52 views

CVE-2023-43088

Dell Client BIOS contains a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access can potentially exploit this to execute arbitrary code on the device. Advisory sources (NVD entry and related records) indicate the impact is focused on confidentiality, i...

7.2CVSS6.7AI score0.00276EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/22 6:0 p.m.20 views

CVE-2023-43088

Dell Client BIOS contains a pre-boot direct memory access DMA vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device...

7.2CVSS7.2AI score0.00276EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/12/22 12:0 a.m.4 views

Dell BIOS Security Vulnerability

Dell BIOS is embedded software on a small memory chip on a computer motherboard from Dell USA. A security vulnerability exists in Dell BIOS, which stems from pre-boot direct access to memory, and can be exploited by an attacker to execute arbitrary code on the device...

7.2CVSS7.6AI score0.00276EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/22 12:0 a.m.4 views

PT-2023-28692 · Dell · Dell Client Bios

Name of the Vulnerable Software and Affected Versions: Dell Client BIOS affected versions not specified Description: Dell Client BIOS contains a pre-boot direct memory access DMA vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability...

7.2CVSS6.8AI score0.00276EPSS
Exploits0References6
OSV
OSV
added 2023/11/28 9:15 p.m.4 views

CVE-2023-29061

There is no BIOS password on the FACSChorus workstation. A threat actor with physical access to the workstation can potentially exploit this vulnerability to access the BIOS configuration and modify the drive boot order and BIOS pre-boot authentication...

5.2CVSS5.8AI score0.00378EPSS
Exploits0References1
NVD
NVD
added 2023/11/28 9:15 p.m.25 views

CVE-2023-29061

There is no BIOS password on the FACSChorus workstation. A threat actor with physical access to the workstation can potentially exploit this vulnerability to access the BIOS configuration and modify the drive boot order and BIOS pre-boot authentication...

5.2CVSS0.00378EPSS
Exploits0References1
CVE
CVE
added 2023/11/28 8:33 p.m.61 views

CVE-2023-29061

BD FACSChorus is affected by CVE-2023-29061 due to missing BIOS password on the workstation. In BD FACSChorus v5.0, v5.1, v3.0, and v3.1, a threat actor with physical access can access BIOS settings and modify boot order and pre-boot authentication. CVSS v3.1 base score 5.2 (AV:P, AC:L, PR:N, UI:...

5.2CVSS5.2AI score0.00378EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/18 12:0 a.m.7 views

PT-2023-24730 · Insyde · Insydeh2O

Name of the Vulnerable Software and Affected Versions: Insyde InsydeH2O versions 5.0 through 5.5 Description: An issue was discovered in SystemFirmwareManagementRuntimeDxe. The implementation of the GetImage method retrieves the value of a runtime variable named GetImageProgress, and later uses...

7.8CVSS7.7AI score0.0022EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/09 10:3 a.m.6 views

shim: 3rd party shim allow secure boot bypass

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

6.7CVSS6.1AI score0.01037EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/09 10:3 a.m.5 views

shim: 3rd party shim allow secure boot bypass

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

6.7CVSS6.1AI score0.00936EPSS
Exploits0References6
OSV
OSV
added 2023/02/16 8:15 p.m.4 views

CVE-2022-40080

Stack overflow vulnerability in Aspire E5-475G 's BIOS firmware, in the FpGui module, a second call to GetVariable services allows local attackers to execute arbitrary code in the UEFI DXE phase and gain escalated privileges...

7.8CVSS6.1AI score0.00365EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.5 views

SUSE CVE-2022-34301

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

7.2CVSS9.2AI score0.00936EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.4 views

SUSE CVE-2022-34303

A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use...

7.2CVSS9.2AI score0.00813EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/08/26 6:15 p.m.3 views

CVE-2022-34302

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

6.7CVSS6.2AI score0.01037EPSS
Exploits0References4
OSV
OSV
added 2022/08/26 6:15 p.m.5 views

CVE-2022-34301

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

6.7CVSS7.5AI score0.00936EPSS
Exploits0References3
Rows per page
Query Builder