CVE-2025-4275 | Insyde H2O up to 5.7 Attached efi File certificate validation

Inserito da Angelo Barbosa | Giu 11, 2025 | CVE

A vulnerability was found in Insyde H2O up to 5.7. It has been rated as critical. This issue affects some unknown processing of the component Attached efi File Handler. The manipulation leads to improper certificate validation.

The identification of this vulnerability is CVE-2025-4275. The attack needs to be approached locally. There is no exploit available.

CVE-2025-4275 | Insyde H2O up to 5.7 Attached efi File certificate validation

Post correlati

CVE-2024-45731 | Splunk Enterprise up to 9.1.5/9.2.2/9.3.0 on Windows path traversal (SVD-2024-1001)

CVE-2024-8252 | Clean Login Plugin up to 1.14.5 on WordPress file inclusion

CVE-2025-23180 | Ribbon Communications Apollo 9608 9.6R3 unnecessary privileges

CVE-2024-5299 | D-Link D-View 2.0.1.28 execMonitorScript routine (ZDI-24-450)