CVE-2022-40261

An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environment more privileged than operating system OS and completely isolated from it. Running arbitrary code in SMM additionally bypasses SMM-based SPI...

CVE-2022-40250 Stack overflow vulnerability in SMI handler on SmmSmbiosElog.

An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environment more privileged than operating system OS and completely isolated from it. Running arbitrary code in SMM additionally bypasses SMM-based SPI...

Intel NUC M15 缓冲区错误漏洞

Intel NUC M15 is a laptop kit from Intel Corporation USA. A security vulnerability exists in previous versions of the Intel NUC M15 Laptop Kit BC0076, which stems from an elevation of privilege, executing arbitrary code in System Management Mode, and running arbitrary code in SMM will also bypass...

PT-2022-25306 · Unknown · Overclocksmihandler

Name of the Vulnerable Software and Affected Versions: OverClockSmiHandler affected versions not specified Description: An attacker can exploit this issue to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environment more privileged than the...