exploitDog

GHSA-grf5-hh55-whxh

Опубликовано: 02 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A stack buffer overflow vulnerability discovered in AsfSecureBootDxe in Insyde InsydeH2O with kernel 5.0 through 5.5 allows attackers to run arbitrary code execution during the DXE phase.

A stack buffer overflow vulnerability discovered in AsfSecureBootDxe in Insyde InsydeH2O with kernel 5.0 through 5.5 allows attackers to run arbitrary code execution during the DXE phase.

Ссылки

EPSS

Процентиль: 46%

0.00232

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-121

CWE-787

Связанные уязвимости

CVE-2023-39281

CVSS3: 9.8

nvd

больше 2 лет назад

A stack buffer overflow vulnerability discovered in AsfSecureBootDxe in Insyde InsydeH2O with kernel 5.0 through 5.5 allows attackers to run arbitrary code execution during the DXE phase.

EPSS

Процентиль: 46%

0.00232

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-121

CWE-787