4 matches found
Insyde InsydeH2O has an unspecified vulnerability (CNVD-2022-10283)
Insyde InsydeH2O is a C source from Insyde Software Taiwan, China that implements the new technology "EFI/UEFI" specification, designed to replace the legacy BIOS Basic Input/Output System. The vulnerability can be exploited to read or write or manipulate data to SMRAM, resulting in an escalation...
CVE-2016-5729
Lenovo BIOS EFI Driver allows local administrators to execute arbitrary code with System Management Mode SMM privileges via unspecified vectors...
Code injection
Lenovo BIOS EFI Driver allows local administrators to execute arbitrary code with System Management Mode SMM privileges via unspecified vectors...
CVE-2016-5729
Lenovo BIOS EFI Driver allows local administrators to execute arbitrary code with System Management Mode SMM privileges via unspecified vectors...