[BRLY-LOGOFAIL-2023-001] Memory contents leak / information disclosure vulnerability in DXE driver
Binarly REsearch Team has discovered a memory contents leak / information disclosure vulnerability. BmpHeader->ImageOffset is not validated during parsing of arbitrary BMP file on Insyde firmware. The attacker can make it as high as 0xFFFFFFFF and thus display the contents of physical memory (in the form of pixels).