Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/07/13 4:6 p.m.6 views

CVE-2025-7029

A vulnerability in the Software SMI handler SwSmiInputValue 0xB2 allows a local attacker to control the RBX register, which is used to derive pointers OcHeader, OcData passed into power and thermal configuration logic. These buffers are not validated before performing multiple structured memory...

8.2CVSS7.4AI score0.00192EPSS
Exploits0References1
NVD
NVD
added 2025/07/11 4:15 p.m.9 views

CVE-2025-7029

A vulnerability in the Software SMI handler SwSmiInputValue 0xB2 allows a local attacker to control the RBX register, which is used to derive pointers OcHeader, OcData passed into power and thermal configuration logic. These buffers are not validated before performing multiple structured memory...

8.2CVSS0.00192EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/07/11 3:22 p.m.9 views

CVE-2025-7029 SMM Arbitrary Write via Unchecked OcHeader Buffer in Platform Configuration Handler

A vulnerability in the Software SMI handler SwSmiInputValue 0xB2 allows a local attacker to control the RBX register, which is used to derive pointers OcHeader, OcData passed into power and thermal configuration logic. These buffers are not validated before performing multiple structured memory...

0.00192EPSS
Exploits0References3
CVE
CVE
added 2025/07/11 3:22 p.m.73 views

CVE-2025-7029

CVE-2025-7029 affects Gigabyte UEFI firmware via the Software SMI handler SwSmiInputValue 0xB2. The vulnerability lets an attacker locally control the RBX-derived pointers (OcHeader, OcData) used in power/thermal configuration, enabling arbitrary SMRAM writes and potential SMM privilege escalatio...

8.2CVSS6.8AI score0.00192EPSS
Exploits0References4
Rows per page
Query Builder