DescriptionInsufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having important severity.
SUSE Timeline for this CVECVE page created: Tue May 23 02:00:23 2023
CVE page last modified: Thu Aug 17 12:03:18 2023