AMD EPYC 安全漏洞

The AMD EPYC is a high-performance server processor developed by American semiconductor company AMD. There are security vulnerabilities in the AMD EPYC™ 9005 Series Processors and the AMD EPYC™ Embedded 9005 Series Processors. These vulnerabilities stem from improper handling of the segmentation...

CVE-2022-35896

An issue SMM memory leak vulnerability in SMM driver SMRAM was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. An attacker can dump SMRAM contents via the software SMI provided by the FvbServicesRuntimeDxe driver to read the contents of SMRAM, leading to information disclosure...

CVE-2022-35893

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. An SMM memory corruption vulnerability in the FvbServicesRuntimeDxe driver allows an attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM...

Insyde InsydeH2O 安全漏洞

Insyde InsydeH2O is a new EFI/UEFI specification from Insyde China. It is intended to replace the traditional BIOS Basic Input/Output System. A security vulnerability exists in Insyde InsydeH2O, which stems from unchecked output buffers and could lead to arbitrary code execution and SMM memory...

EUVD-2021-28840

Malicious code in bioql PyPI...

EUVD-2022-38769

Malicious code in bioql PyPI...

EUVD-2023-57335

Malicious code in bioql PyPI...

EUVD-2022-28946

Malicious code in bioql PyPI...

EUVD-2022-38766

Malicious code in bioql PyPI...

EUVD-2023-26749

Malicious code in bioql PyPI...

EUVD-2023-57336

Malicious code in bioql PyPI...

EUVD-2021-30529

Malicious code in bioql PyPI...

EUVD-2022-39157

Malicious code in bioql PyPI...

EUVD-2022-43452

Malicious code in bioql PyPI...

EUVD-2022-43454

Malicious code in bioql PyPI...

CVE-2025-4422 EfiSmiServices : EfiPcdProtocol, SMM memory corruption vulnerabilities in SMM module

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

CVE-2022-24031

An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM...

CVE-2022-40134

An information leak vulnerability in the SMI Set BIOS Password SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory...

CVE-2021-41837

An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to...

CVE-2021-42554

An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.42, Kernel 5.3 before 05.35.42, Kernel 5.4 before 05.42.51, and Kernel 5.5 before 05.50.51. An SMM memory corruption vulnerability in FvbServicesRuntimeDxe allows a...