5 matches found
EUVD-2023-57336
Malicious code in bioql PyPI...
CVE-2024-38433 Nuvoton - CWE-305: Authentication Bypass by Primary Weakness
Nuvoton - CWE-305: Authentication Bypass by Primary Weakness An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock reference code can modify the u-boot image header on flash parsed by the BootBlock which could lead to arbitrary code execution...
Nuvoton NPCM7xx Security Vulnerability
Nuvoton NPCM7xx is a server remote management control chip from Nuvoton China. A security vulnerability exists in Nuvoton NPCM7xx Poleg BootBlock versions prior to v10.10.19, which originates from bypassing authentication via a major weakness, and can be exploited to modify the u-boot image heade...
PT-2023-14076 · Nvidia · Nvidia Bmc
Name of the Vulnerable Software and Affected Versions: NVIDIA BMC affected versions not specified Description: The issue allows an unauthenticated host to write to a host SPI flash, bypassing secureboot protections. This may lead to a loss of integrity and denial of service. Recommendations: At t...
CVE-2021-3453
Some Lenovo Notebook, ThinkPad, and Lenovo Desktop systems have BIOS modules unprotected by Intel Boot Guard that could allow an attacker with physical access the ability to write to the SPI flash storage...