Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:L
Vulnerability Type
缓冲区下溢
Vulnerability Title
Tianocore Edk2 缓冲区错误漏洞
Vulnerability Description
Tianocore Edk2是Tianocore社区的一个遵循UEFI和PI规范的跨平台固件开发环境。 Tianocore Edk2 存在安全漏洞,该漏洞源于在计算 BufferSize 时,SmmEntryPoint 中的现有 CommBuffer 检查不会捕获下溢。
CVSS Information
N/A
Vulnerability Type
N/A