3 matches found
CVE-2022-40246
A potential attacker can write one byte by arbitrary address at the time of the PEI phase only during S3 resume boot mode and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines V...
CVE-2022-40246 Arbitrary write vulnerability in SbPei module leads to arbitrary code execution during PEI phase.
A potential attacker can write one byte by arbitrary address at the time of the PEI phase only during S3 resume boot mode and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines V...
CVE-2022-40246
CVE-2022-40246 concerns the SbPei module and a byte-write during the PEI phase (specifically on S3 resume) that can influence subsequent boot stages. Affected component is SbPei; root cause is arbitrary one-byte write at an address during PEI, enabling mitigations bypass, disclosure of physical m...