系微安全保證
最新安全公告
Security Advisory Archives
BIOS & BMC
InsydeH2O | 2023年03月7日 : SA-2023017
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023017 | H2OSmmDebugPrintErrorLevelLib: Variable size is not initialized before calling GetVariable. | 6.4 |
InsydeH2O | 2023年02月14日 : SA-2023009
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023009 | DMA attacks on the FvbServicesRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 8.2 |
InsydeH2O | 2023年02月14日 : SA-2023008
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023008 | DMA attacks on the AhciBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 7.5 |
InsydeH2O | 2023年02月14日 : SA-2023007
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023007 | DMA attacks on the VariableRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 8.2 |
InsydeH2O | 2023年02月14日 : SA-2023006
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023006 | DMA attacks on the StorageSecurityCommandDxe shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 8.2 |
InsydeH2O | 2023年02月14日 : SA-2023005
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023005 | DMA attacks on the HddPassword shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 8.2 |
InsydeH2O | 2023年02月14日 : SA-2023003
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023003 | DMA attacks on the IHISI command buffer could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 8.2 |
InsydeH2O | 2023年02月14日 : SA-2023002
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023002 | DMA attacks on the FwBlockServiceSmm shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges | 8.2 |
InsydeH2O | 2023年02月14日 : SA-2023001
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023001 | DMA attacks on the PnpSmm shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 8.2 |
InsydeH2O | 2023年02月14日 : SA-2023015
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023015 | DMA attacks on the NvmExpressDxe shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 7.8 |
InsydeH2O | 2023年02月14日 : SA-2023014
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023014 | DMA attacks on the SdMmcDevice shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 7.8 |
InsydeH2O | 2023年02月14日 : SA-2023013
| Link | Summary | CVSS Score |
|---|---|---|
| INSYDE-SA-2023013 | DMA attacks on the SdHostDriver shared buffer used by SMM and non-SMM code could cause TOCTOU issues which could lead to corruption of SMRAM and escalation of privileges. | 7.8 |