GIGABYTE BRIX UEFI firmware does not cryptographically validate images prior to updating the system firmware. Additionally, the firmware updates are served over HTTP. An attacker can make arbitrary modifications to firmware images without being detected.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HGigabyte Gb Bsi7h 6500
HWGigabytewszystkie wersjeGigabyte Gb Bsi7h 6500 Firmware
OSGigabytef6Gigabyte Gb Bxi7 5775
HWGigabytewszystkie wersjeGigabyte Gb Bxi7 5775 Firmware
OSGigabytef2
Related vulnerabilities
GIGABYTE BRIX UEFI firmware for the GB-BSi7H-6500 (version F6) and GB-BXi7-5775 (version F2) platforms does no...
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTRE...
Gigabyte Control Center — zapis dowolnych plików prowadzący do RCE lub privilege escalation
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE befo...
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTRE...