CVE-2023-31343

High

Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code…

AMD·CWE-1220·Published 2025-02-11

CVSS

7.5

EPSS

0.00

KEV

Exploits

cve.orgen

145 chars

Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execution.

NVDen

145 chars

Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execution.

Una validación de entrada incorrecta en el controlador SMM puede permitir que un atacante privilegiado sobrescriba SMRAM, lo que podría conducir a la ejecución de código arbitrario.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	7.5	—	—	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
3.1	Secondary	NVD	7.5	0.8	6.0	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H