NuytsTech Security

CVE-2018-12182

by ·

Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.

Date published : 2019-03-27

http://www.securityfocus.com/bid/107648

https://edk2-docs.gitbooks.io/security-advisory/content/sw-smi-confused-deputy-smramsavestate_c.html

Tags: