Описание
Incomplete cleanup in the ASP may expose the Master Encryption Key (MEK) to a privileged attacker with access to the BIOS menu or UEFI shell and a memory exfiltration vulnerability, potentially resulting in loss of confidentiality.
EPSS
Процентиль: 3%
0.00018
Низкий
1.9 Low
CVSS3
Дефекты
CWE-459
Связанные уязвимости
CVSS3: 1.9
github
около 1 года назад
Incomplete cleanup in the ASP may expose the Master Encryption Key (MEK) to a privileged attacker with access to the BIOS menu or UEFI shell and a memory exfiltration vulnerability, potentially resulting in loss of confidentiality.
EPSS
Процентиль: 3%
0.00018
Низкий
1.9 Low
CVSS3
Дефекты
CWE-459