Binarly Advisories

REsearch

Binarly Advisories

[BRLY-2022-121] Memory contents leak / information disclosure vulnerability in DXE driver on Dell platform.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a memory contents leak / information disclosure vulnerability that allows a potential attacker to dump stack memory or global memory into an NVRAM variable. This in turn could help building a successful attack vector based on exploiting a memory corruption vulnerability.

Read more

[BRLY-2022-087] Memory contents leak / information disclosure vulnerability in DXE driver on Dell platform.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a memory contents leak / information disclosure vulnerability that allows a potential attacker to dump stack memory or global memory into an NVRAM variable. This in turn could help building a successful attack vector based on exploiting a memory corruption vulnerability.

Read more

[BRLY-2022-001] Stack buffer overflow vulnerability leads to arbitrary code execution in a DXE driver on Intel platform.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a stack overflow vulnerability that allows a local root user to access a UEFI DXE driver and execute arbitrary code.

Read more

[BRLY-2022-015] The arbitrary code execution in DXE driver.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered the ability of arbitrary code execution in DXE driver.

Read more

[BRLY-2021-053] The stack buffer overflow vulnerability leads to arbitrary code execution in DXE driver on Intel platform

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a stack overflow vulnerability that allows a local root user to access UEFI DXE driver and execute arbitrary code.

Read more

[BRLY-2021-045] SMM callout vulnerability in USBRT SMM driver on Dell devices (SMM arbitrary code execution)

BINARLY efiXplorer team

BINARLY efiXplorer team identified SMM callout on Dell platforms, which allows a attacker to access the System Management Mode and execute arbitrary code.

Read more

[BRLY-2021-043] SMM arbitrary code execution in USBRT SMM driver on Dell devices.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered SMM arbitrary code execution on Dell devices.

Read more

[BRLY-2022-004] SMM arbitrary code execution in USBRT SMM driver on Dell devices.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered SMM arbitrary code execution on Dell devices.

Read more

[BRLY-2021-017] SMM callout vulnerability in combined DXE/SMM on Fujitsu device (SMM arbitrary code execution)

BINARLY efiXplorer team

BINARLY efiXplorer team identified a SMM callout in a Fujitsu device, which allows an attacker to access the System Management Mode and execute arbitrary code.

Read more

[BRLY-2021-010] SMM memory corruption vulnerability in combined DXE/SMM driver on Fujitsu device (SMRAM write)

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability in a Fujitsu device allowing a possible attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-009] SMM memory corruption vulnerability in combined DXE/SMM driver on Fujitsu device (SMRAM write)

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability in a Fujitsu device allowing a possible attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-012] SMM memory corruption vulnerability in combined DXE/SMM driver on Fujitsu device (SMRAM write)

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability in Fujitsu devices allowing a possible attacker to write data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-005] The stack buffer overflow vulnerability leads to arbitrary code execution in UEFI DXE driver on multiple HP devices.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a stack overflow vulnerability that allows a local priviledged user to access UEFI DXE driver and execute arbitrary code.

Read more

[BRLY-2021-006] The stack buffer overflow vulnerability leads to arbitrary code execution in UEFI DXE driver on multiple HP devices.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a stack overflow vulnerability that allows a local priviledged user to access UEFI DXE driver and execute arbitrary code.

Read more

[BRLY-2021-007] The stack buffer overflow vulnerability leads to arbitrary code execution in UEFI application on multiple HP devices.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a stack overflow vulnerability that allows a local root user to access UEFI Runtime DXE application and execute arbitrary code.

Read more

[BRLY-2021-011] SMM memory corruption vulnerability in combined DXE/SMM driver on Fujitsu device (SMRAM write)

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability in Fujitsu devices allowing a possible attacker to write data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-013] SMM memory corruption vulnerability in combined DXE/SMM driver on Fujitsu device (SMRAM write)

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability in Fujitsu devices allowing a possible attacker to write data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-003] The stack buffer overflow vulnerability leads to arbitrary code execution in UEFI application on multiple HP devices.

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a stack buffer overflow vulnerability that allows a local priviledged user to access UEFI Runtime DXE application and execute arbitrary code.

Read more

[BRLY-2021-030] SMM memory corruption vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability on a BullSequana Edge server allowing a possible attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-015] SMM memory corruption vulnerability in combined DXE/SMM on Fujitsu device (SMRAM write)

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability in a Fujitsu device allowing a possible attacker to write data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-029] SMM memory corruption vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability on a BullSequana Edge server allowing a possible attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-028] SMM callout vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM callout vulnerability on a BullSequana Edge server allowing a possible attacker to hijack execution flow of a code running in System Management Mode. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-027] SMM memory corruption vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability on a BullSequana Edge server allowing a possible attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-026] SMM memory corruption vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability on a BullSequana Edge server allowing a possible attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-025] SMM callout vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM callout vulnerability on a BullSequana Edge server allowing a possible attacker to hijack execution flow of a code running in System Management Mode. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-024] SMM memory corruption vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM memory corruption vulnerability on a BullSequana Edge server allowing a possible attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-023] SMM callout vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM callout vulnerability on a BullSequana Edge server allowing a possible attacker to hijack the execution flow of a code running in System Management Mode. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-022] SMM callout vulnerability in combined DXE/SMM driver on BullSequana Edge server

BINARLY efiXplorer team

BINARLY efiXplorer team has discovered a SMM callout vulnerability on a BullSequana Edge server allowing a possible attacker to hijack execution flow of a code running in System Management Mode. Exploiting this issue could lead to escalating privileges to SMM.

Read more

[BRLY-2021-020] SMM callout vulnerability in combined DXE/SMM on Fujitsu device (SMM arbitrary code execution)

BINARLY efiXplorer team

BINARLY efiXplorer team identified a SMM callout in a Fujitsu device, which allows an attacker to access the System Management Mode and execute arbitrary code.

Read more

[BRLY-2021-019] SMM callout vulnerability in combined DXE/SMM on Fujitsu device (SMM arbitrary code execution)

BINARLY efiXplorer team

BINARLY efiXplorer team identified a SMM callout in a Fujitsu device, which allows an attacker to access the System Management Mode and execute arbitrary code.

Read more

[BRLY-2021-018] SMM callout vulnerability in combined DXE/SMM on Fujitsu device (SMM arbitrary code execution)

BINARLY efiXplorer team

BINARLY efiXplorer team identified a SMM callout in a Fujitsu device, which allows an attacker to access the System Management Mode and execute arbitrary code.

Read more