Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26) Arbitrary Memory Corruption in SMI Handler of ThisiServicesSmm SMM module. This can be leveraged by a malicious OS attacker to corrupt arbitrary SMRAM memory and, in turn, lead to code execution in SMM
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
Huawei PC Manager 安全漏洞
Vulnerability Description
Huawei PC Manager是中国华为(Huawei)公司的一款计算机管理应用程序。 Huawei PC Manager存在安全漏洞,该漏洞源于ThisiServicesSmm SMM 模块的 SMI处理程序中存在内存损坏,攻击者利用该漏洞可以损坏任意 SMRAM 内存,进而导致 SMM 中的代码执行。
CVSS Information
N/A
Vulnerability Type
N/A