cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-52712,https://securityvulnerability.io/vulnerability/CVE-2023-52712,Bypassing Protections and Leaking/Corrupting SMM Memory: Vulnerabilities in AmdPspP2CmboxV2,"The vulnerability arises from various issues connected to an exposed SMI handler within the AMD Processor Security Suite. This flaw allows an attacker to bypass the safeguards implemented during previous UEFI phases, leading to unauthorized access to the SPI flash. Additionally, attackers can exploit this vulnerability to leak and compromise SMM memory, potentially resulting in arbitrary code execution within the System Management Mode (SMM). Organizations utilizing affected AMD products are advised to review and mitigate risks associated with this vulnerability.",Huawei,Curiem-wfg9b,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-28T06:22:59.052Z,0
CVE-2023-52711,https://securityvulnerability.io/vulnerability/CVE-2023-52711,Bypassing Protections and Leaking/Corrupting SMM Memory: Vulnerabilities in AmdPspP2CmboxV2,"The issue centers around exposed System Management Interrupt (SMI) handlers in the AmdPspP2CmboxV2, which can allow adversaries to bypass existing protections established during previous UEFI phases. Additionally, the vulnerability enables the potential leaking and corruption of SMM memory. This situation raises concerns over the integrity and security of the system, as it could lead to unauthorized code execution within the System Management Mode, thereby compromising the overall security framework.",Huawei,Curiem-wfg9b,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-28T06:19:26.186Z,0
CVE-2023-52710,https://securityvulnerability.io/vulnerability/CVE-2023-52710,Buffer Overrun Vulnerability in Huawei Matebook D16 Could Lead to Code Execution,"A buffer overflow vulnerability has been identified in the Huawei Matebook D16 specifically affecting the model CREM-WXX9 running BIOS version v2.26. The vulnerability arises from improper validation of communication buffer sizes, which can lead to unintended overlap with the start of System Management RAM (SMRAM). This situation may allow an attacker with malicious intent to manipulate the data structures stored in SMRAM, potentially facilitating unauthorized code execution in System Management Mode (SMM). Proper mitigation and updates are advised for affected users to enhance security.",Huawei,Curiem-wfg9b,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-28T06:18:22.524Z,0
CVE-2023-52548,https://securityvulnerability.io/vulnerability/CVE-2023-52548,Arbitrary Memory Corruption in SMI Handler of ThisiServicesSmm SMM Module,"The identified vulnerability in the Huawei Matebook D16 results in arbitrary memory corruption within the SMI Handler of the ThisiServicesSmm SMM module. A malicious attacker with OS-level access could exploit this flaw to manipulate and corrupt SMRAM memory. This exploitation poses significant risks, potentially allowing unauthorized code execution in the System Management Mode (SMM), highlighting the importance of timely mitigation and updates.",Huawei,Curiem-wfg9b,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-28T06:16:48.525Z,0
CVE-2023-52547,https://securityvulnerability.io/vulnerability/CVE-2023-52547,Memory Corruption in SMI Handler of HddPassword SMM Module Affects Huawei Matebook D16,"A memory corruption vulnerability exists within the System Management Interrupt (SMI) handler of the HddPassword System Management Mode (SMM) module in Huawei Matebook D16, specifically in model CREM-WXX9 with BIOS version v2.26. This issue could allow an attacker with malicious OS capabilities to alter data structures stored at the beginning of the System Management RAM (SMRAM). Exploitation of this vulnerability has the potential for unauthorized code execution in SMM, posing risks to system integrity and data security.",Huawei,Curiem-wfg9b,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-28T06:15:20.883Z,0