7.5

CVSS3.1

CVE-2022-23815 -

Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution.

πŸ“… Published: Aug. 13, 2024, 4:51 p.m. πŸ”„ Last Modified: March 18, 2025, 9:15 p.m.

3.9

CVSS3.1

CVE-2021-46772 -

Insufficient input validation in the ABL may allow a privileged attacker with access to the BIOS menu or UEFI shell to tamper with the structure headers in SPI ROM causing an out of bounds memory read and write, potentially resulting in memory corruption or denial of service.

πŸ“… Published: Aug. 13, 2024, 4:50 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.2

CVSS3.1

CVE-2021-46746 -

Lack of stack protection exploit mechanisms in ASP Secure OS Trusted Execution Environment (TEE) may allow a privileged attacker with access to AMD signing keys to c006Frrupt the return address, causing a stack-based buffer overrun, potentiallyΒ leading to a denial of service.

πŸ“… Published: Aug. 13, 2024, 4:50 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

3.9

CVSS3.1

CVE-2021-26387 -

Insufficient access controls in ASP kernel may allow a privileged attacker with access to AMD signing keys and the BIOS menu or UEFI shell to map DRAM regions in protected areas,Β potentially leading to a loss of platform integrity.

πŸ“… Published: Aug. 13, 2024, 4:50 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.7

CVSS3.1

CVE-2021-26367 -

A malicious attacker in x86 can misconfigure the Trusted Memory Regions (TMRs), which may allow the attacker to set an arbitrary address range for the TMR, potentially leading to a loss of integrity and availability.

πŸ“… Published: Aug. 13, 2024, 4:50 p.m. πŸ”„ Last Modified: Dec. 12, 2024, 8:41 p.m.

7.2

CVSS3.1

CVE-2021-26344 -

An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker with access the ability to modify the BIOS image, and the ability to sign the resulting image, to potentially modify the APCB block resulting in arbitrary code execution.

πŸ“… Published: Aug. 13, 2024, 4:49 p.m. πŸ”„ Last Modified: March 18, 2025, 4:15 p.m.

8.5

CVSS4.0

CVE-2024-6619 - Incorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream Report

In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local unprivileged attacker to escalate their privileges and could cause a denial-of-service.

πŸ“… Published: Aug. 13, 2024, 4:41 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.5

CVSS4.0

CVE-2024-6618 - Path Traversal in Ocean Data Systems Dream Report

In Ocean Data Systems Dream Report, a path traversal vulnerability could allow an attacker to perform remote code execution through the injection of a malicious dynamic-link library (DLL).

πŸ“… Published: Aug. 13, 2024, 4:37 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.7

CVSS4.0

CVE-2024-7113 - Allocation of Resources Without Limits or Throttling in AVEVA SuiteLink Server

If exploited, this vulnerability could cause a SuiteLink server to consume excessive system resources and slow down processing of Data I/O for the duration of the attack.

πŸ“… Published: Aug. 13, 2024, 4:26 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2024-21757 -

A unverified password change in Fortinet FortiManager versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1, as well as Fortinet FortiAnalyzer versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1, allows an attacker to…

πŸ“… Published: Aug. 13, 2024, 3:51 p.m. πŸ”„ Last Modified: Aug. 22, 2024, 2:34 p.m.
Total resulsts: 349182
Page 8878 of 34,919
Β« previous page Β» next page
Filters