3037 matches found
CVE-2023-28063
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...
Privilege escalation
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...
CVE-2023-28063
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...
CVE-2023-28063
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service...
CVE-2023-28063
CVE-2023-28063 affects Dell BIOS. Root cause: a signed-to-unsigned conversion error. Local authenticated admin can exploit to cause a denial of service. Dell-DSA-2023-176 and Dell KB 000214780 document the fix; Nessus plugin notes a patch is available. If exploited, impact is DoS on the affected ...
PT-2024-12151 · Dell · Dell Bios
Name of the Vulnerable Software and Affected Versions: Dell BIOS affected versions not specified Description: The issue is related to a Signed to Unsigned Conversion Error. A local authenticated malicious user with admin privileges could potentially exploit this, leading to denial of service...
Amazon Linux 2023 : systemd, systemd-boot-unsigned, systemd-container (ALAS2023-2024-509)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-509 advisory. systemd-resolved accepts records of DNSSEC-signed domains even when they have no signature, allowing man- in-the-middles or the upstream DNS resolver to manipulate records. CVE-2023-7008 Tenable has...
PT-2024-21527
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a shift problem in the ufshcd clear cmd function. When task tag is greater than or equal to 32 in MCQ mode and the size of an unsigned integer is 4, the expressio...
AZL-35273 CVE-2023-40549 affecting package shim-unsigned-x64 for versions less than 15.8-3
An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service...
AZL-35265 CVE-2023-40550 affecting package shim-unsigned-aarch64 for versions less than 15.8-3
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase...
AZL-35277 CVE-2023-40550 affecting package shim-unsigned-x64 for versions less than 15.8-3
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase...
AZL-33984 CVE-2023-40546 affecting package shim-unsigned-x64 for versions less than 15.8-1
A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an error message to the user; however, the number of parameters used by the logging function doesn't match the format string used by it, leading to a cras...
AZL-34095 CVE-2023-40549 affecting package shim-unsigned-x64 for versions less than 15.8-1
An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service...
AZL-34094 CVE-2023-40550 affecting package shim-unsigned-x64 for versions less than 15.8-1
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase...
AZL-34093 CVE-2023-40548 affecting package shim-unsigned-x64 for versions less than 15.8-1
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...
AZL-35263 CVE-2023-40548 affecting package shim-unsigned-aarch64 for versions less than 15.8-3
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...
AZL-35267 CVE-2023-40547 affecting package shim-unsigned-aarch64 for versions less than 15.8-3
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...
AZL-35278 CVE-2023-40547 affecting package shim-unsigned-x64 for versions less than 15.8-3
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...
AZL-33895 CVE-2023-40547 affecting package shim-unsigned-x64 for versions less than 15.8-1
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...
protobuf-c: unsigned integer overflow in parse_required_member
A vulnerability was found in protobuf-c. This security flaw leads to an unsigned integer overflow in parserequiredmember...