Search Results | AttackerKB

Show filters

Topics 27 Users 9,669

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

27 Total Results

Displaying 1-10 of 27

Attacker Value

Unknown

CVE-2021-3519

Disclosure Date: November 12, 2021 (last updated October 07, 2023)

A vulnerability was reported in some Lenovo Desktop models that could allow unauthorized access to the boot menu, when the "BIOS Password At Boot Device List" BIOS setting is Yes.

Attack Vector: Physical Privileges: None User Interaction: None

1

Attacker Value

Unknown

CVE-2023-45079

Disclosure Date: November 08, 2023 (last updated November 17, 2023)

A memory leakage vulnerability was reported in the NvmramSmm SMM driver that may allow a local attacker with elevated privileges to write to NVRAM variables.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-45078

Disclosure Date: November 08, 2023 (last updated November 17, 2023)

A memory leakage vulnerability was reported in the DustFilterAlertSmm SMM driver that may allow a local attacker with elevated privileges to write to NVRAM variables.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-45077

Disclosure Date: November 08, 2023 (last updated November 17, 2023)

A memory leakage vulnerability was reported in the 534D0740 DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-45076

Disclosure Date: November 08, 2023 (last updated November 17, 2023)

A memory leakage vulnerability was reported in the 534D0140 DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-45075

Disclosure Date: November 08, 2023 (last updated November 17, 2023)

A memory leakage vulnerability was reported in the SWSMI_Shadow DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-43581

Disclosure Date: November 08, 2023 (last updated November 16, 2023)

A buffer overflow was reported in the Update_WMI module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-43580

Disclosure Date: November 08, 2023 (last updated November 16, 2023)

A buffer overflow was reported in the SmuV11DxeVMR module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-43579

Disclosure Date: November 08, 2023 (last updated November 16, 2023)

A buffer overflow was reported in the SmuV11Dxe driver in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-43578

Disclosure Date: November 08, 2023 (last updated November 16, 2023)

A buffer overflow was reported in the SmiFlash module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

Attack Vector: Local Privileges: High User Interaction: None

0