CVE-2023-22444 — Vulnetix

CVE-2023-22444 PUBLISHED

BRLY-2022-039 Medium CVE-2023-22444 BINARLY efiXplorer team identified an SMM memory contents leak / information disclosure vulnerability, which allows an attacker to read portions of SMRAM memory. This in turn could help building a successful attack vector exploiting SMM memory corruption vulnerability.

EPSS 0.04% · 11.8th percentile

Risk Scores

EPSS Score

0.04%

11.8th percentile

Timeline

Aug 8, 2023 CVE Published
Aug 11, 2023 EPSS Score
Sep 14, 2023 EPSS Score
Oct 17, 2023 EPSS Score
Nov 20, 2023 EPSS Score
Dec 23, 2023 EPSS Score
Jan 26, 2024 EPSS Score
Feb 28, 2024 EPSS Score
Apr 2, 2024 EPSS Score
May 5, 2024 EPSS Score
Jun 8, 2024 EPSS Score
Jun 26, 2024 CVE Updated

References

SMRAM memory contents leak / information disclosure vulnerability in SMM driver (SMRAM read). advisory
SMRAM memory contents leak / information disclosure vulnerability in SMM driver (SMRAM read). advisory

Open in Interactive Console →