Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SetupUtility: A buffer overflow vulnerability leads to arbitrary code execution.
Vulnerability Description
A buffer overflow vulnerability exists in the module SetupUtility. An attacker with local privileged access can exploit this vulnerability by executeing arbitrary code.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Insyde InsydeH2O 安全漏洞
Vulnerability Description
Insyde InsydeH2O是中国系微(Insyde)公司的一个新的 EFI/UEFI 规范。旨在取代传统的 BIOS(基本输入/输出系统)。 Insyde InsydeH2O存在安全漏洞,该漏洞源于缓冲区溢出,可能导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A