Описание
Stack overflow vulnerability that allows a local root user to access UEFI DXE driver and execute arbitrary code.
Stack overflow vulnerability that allows a local root user to access UEFI DXE driver and execute arbitrary code.
Связанные уязвимости
CVSS3: 6.7
nvd
почти 4 года назад
An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.08.41, Kernel 5.1 before 05.16.41, Kernel 5.2 before 05.26.41, Kernel 5.3 before 05.35.41, and Kernel 5.4 before 05.42.20. A stack-based buffer overflow leads toarbitrary code execution in UEFI DisplayTypeDxe DXE driver.