ASUS P453UJ - Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2021-41289

6.3MEDIUM

Key Information:

Vendor: Asus
Status: P453uj BiOS
Vendor: CVE Published:; 15 November 2021

What is CVE-2021-41289?

ASUS P453UJ contains the Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability. With a general user’s permission, local attackers can modify the BIOS by replacing or filling in the content of the designated Memory DataBuffer, which causing a failure of integrity verification and further resulting in a failure to boot.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

P453UJ BIOS 311

References

https://www.twcert.org.tw/tw/cp-132-5284-35790-1.html

x_refsource_MISC

https://www.asus.com/tw/supportonly/P453UJ/HelpDesk_BIOS/

x_refsource_MISC

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 15, 2021
Vulnerability Reserved
Sep 15, 2021

JSON

Asus

What is CVE-2021-41289?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.