Search Results | AttackerKB

Show filters

Topics 3 Users 9,713

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

3 Total Results

Displaying 1-3 of 3

Attacker Value

Unknown

CVE-2023-20597

Disclosure Date: September 20, 2023 (last updated October 08, 2023)

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2023-20594

Disclosure Date: September 20, 2023 (last updated October 08, 2023)

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2021-46760

Disclosure Date: May 09, 2023 (last updated October 08, 2023)

A malicious or compromised UApp or ABL can send a malformed system call to the bootloader, which may result in an out-of-bounds memory access that may potentially lead to an attacker leaking sensitive information or achieving code execution.

Attack Vector: Network Privileges: None User Interaction: None

0