3 matches found
CVE-2022-33986
DMA attacks on the parameter buffer used by the VariableRuntimeDxe software SMI handler could lead to a TOCTOU attack. DMA attacks on the parameter buffer used by the software SMI handler used by the driver VariableRuntimeDxe could lead to a TOCTOU attack on the SMI handler and lead to corruption...
CVE-2022-33986
DMA attacks on the parameter buffer used by the VariableRuntimeDxe software SMI handler could lead to a TOCTOU attack. DMA attacks on the parameter buffer used by the software SMI handler used by the driver VariableRuntimeDxe could lead to a TOCTOU attack on the SMI handler and lead to corruption...
CVE-2022-33986
CVE-2022-33986 concerns DMA attacks on the parameter buffer used by the InsydeH2O/VariableRuntimeDxe SMI handler, potentially enabling a TOCTOU attack and SMRAM corruption. Public sources specify the vulnerable component as the VariableRuntimeDxe driver’s SMI handler parameter buffer, with exploi...