A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer(QWORD values for CommBuffer). This can be used by an attacker to corrupt data in SMRAM memory and even lead to arbitrary code execution.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-10-01T02:21:29

Updated: 2024-08-03T23:58:21.523Z

Reserved: 2021-05-28T00:00:00

Link: CVE-2021-33626

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-10-01T03:15:06.593

Modified: 2024-11-21T06:09:13.410

Link: CVE-2021-33626

cve-icon Redhat

No data.