Exposed IOCTL with Insufficient Access Control in Phoenix WinFlash Driver on Windows allows Privilege Escalation which allows for modification of system firmware.This issue affects WinFlash Driver: before 4.5.0.0.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HPhoenixtech Winflash
APPPhoenixtech< 4.5.0.0
Related vulnerabilities
Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platform...
Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for Intel Gemini Lake.Thi...
Improper Input Validation in the processing of user-supplied splash screen during system boot in Phoenix Secur...
Improper Access Control in SMI handler vulnerability in Phoenix SecureCore™ Technology™ 4 allows SPI flash mod...
Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore™ for Intel Kaby Lake,...