ASUS P453UJ - Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE-2021-41289
6.3MEDIUM

Key Information

Vendor
Asus
Status
P453uj BiOS
Vendor
CVE Published:
15 November 2021

Summary

ASUS P453UJ contains the Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability. With a general user’s permission, local attackers can modify the BIOS by replacing or filling in the content of the designated Memory DataBuffer, which causing a failure of integrity verification and further resulting in a failure to boot.

Affected Version(s)

P453UJ BIOS = 311

CVSS V3.1

Score:
6.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre Database
.