Search Results | AttackerKB

Show filters

Topics 3 Users 9,705

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

3 Total Results

Displaying 1-3 of 3

Attacker Value

Unknown

CVE-2023-20597

Disclosure Date: September 20, 2023 (last updated October 08, 2023)

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2023-20594

Disclosure Date: September 20, 2023 (last updated October 08, 2023)

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-20555

Disclosure Date: August 08, 2023 (last updated October 08, 2023)

Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM.

Attack Vector: Local Privileges: Low User Interaction: None

0