https://blog.qife122.com/tags/%E7%B3%BB%E7%BB%9F%E7%AE%A1%E7%90%86%E6%A8%A1%E5%BC%8F/ Recent content in 系统管理模式 on 办公AI智能小助手 Hugo zh-cn qife Sat, 13 Dec 2025 22:25:36 +0800 https://blog.qife122.com/p/%E6%B7%B1%E5%85%A5%E8%A7%A3%E6%9E%90cve-2025-10451insydeh2o%E5%9B%BA%E4%BB%B6%E4%B8%AD%E7%9A%84%E9%AB%98%E5%8D%B1%E8%B6%8A%E7%95%8C%E5%86%99%E5%85%A5%E6%BC%8F%E6%B4%9E/ Sat, 13 Dec 2025 22:25:36 +0800 https://blog.qife122.com/p/%E6%B7%B1%E5%85%A5%E8%A7%A3%E6%9E%90cve-2025-10451insydeh2o%E5%9B%BA%E4%BB%B6%E4%B8%AD%E7%9A%84%E9%AB%98%E5%8D%B1%E8%B6%8A%E7%95%8C%E5%86%99%E5%85%A5%E6%BC%8F%E6%B4%9E/ <h1 id="cve-2025-10451-cwe-787-insyde-software-insydeh2o-中的越界写入漏洞">CVE-2025-10451: CWE-787: Insyde Software InsydeH2O 中的越界写入漏洞</h1> <p><strong>严重性:</strong> 高 <strong>类型:</strong> 漏洞 <strong>CVE:</strong> CVE-2025-10451</p> <p>未检查的输出缓冲区可能允许在系统管理模式（SMM）中执行任意代码，并可能导致SMM内存损坏。</p>