Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.2 views

PT-2026-7442

Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description A flaw exists in the System Management Mode SMM handler due to improper input validation. This could allow an attacker with Ring0 access to write to System Management RAM SMRAM and alter the execution flow...

7CVSS6AI score0.00007EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/09/06 6:6 p.m.5 views

CVE-2024-36354

Improper input validation for DIMM serial presence detect SPD metadata could allow an attacker with physical access, ring0 access on a system with a non-compliant DIMM, or control over the Root of Trust for BIOS update, to bypass SMM isolation potentially resulting in arbitrary code execution at...

7.5CVSS0.00016EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2024/09/03 3:42 p.m.2 views

hw: amd: SMM Lock Bypass

A flaw was found in hw. Improper validation in a model-specific register MSR could allow a malicious program with ring0 access to modify the SMM configuration while the SMI lock is enabled. This issue can lead to arbitrary code execution...

7.5CVSS7.6AI score0.00032EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2024/08/29 12:18 a.m.3 views

hw: amd: SMM Lock Bypass

A flaw was found in hw. Improper validation in a model-specific register MSR could allow a malicious program with ring0 access to modify the SMM configuration while the SMI lock is enabled. This issue can lead to arbitrary code execution...

7.5CVSS7.3AI score0.00032EPSS
Exploits0References5
OSV
OSVadded 2024/08/12 1:38 p.m.1 views

DEBIAN-CVE-2023-31315

Improper validation in a model specific register MSR could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution...

7.5CVSS8AI score0.00032EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/02/13 12:0 a.m.1 views

PT-2024-11956 · Amd · Amd Spi Protection Feature

Name of the Vulnerable Software and Affected Versions: AMD SPI protection feature affected versions not specified Description: The issue is related to improper access control in the AMD SPI protection feature, which may allow a user with Ring0 kernel mode privileged access to bypass protections...

6CVSS7.5AI score0.00007EPSS
Exploits0References7
OSV
OSVadded 2023/11/14 7:15 p.m.0 views

CVE-2023-20596

Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler to gain Ring0 access potentially leading to arbitrary code execution...

9.8CVSS5.9AI score0.00389EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/01/21 12:0 a.m.1 views

PT-2022-7387 · Amd · Amd Processors

Name of the Vulnerable Software and Affected Versions: AMD processors affected versions not specified Description: A potential weakness in AMD SPI protection features may allow a malicious attacker with Ring0 kernel mode access to bypass the native System Management Mode SMM ROM protections. This...

8.2CVSS7.7AI score0.00007EPSS
Exploits0References16
Rows per page
Query Builder