exploitDog

GHSA-2974-5gjv-486c

Опубликовано: 09 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.7

Описание

A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute arbitrary code.

A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute arbitrary code.

Ссылки

EPSS

Процентиль: 14%

0.00047

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2023-43570

CVSS3: 6.7

nvd

около 2 лет назад

A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute arbitrary code.

EPSS

Процентиль: 14%

0.00047

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-20