The UX360CA BIOS through 303 on ASUS laptops allow an attacker (with the ring 0 privilege) to overwrite nearly arbitrary physical memory locations, including SMRAM, and execute arbitrary code in the SMM (issue 3 of 3).
References
Link | Resource |
---|---|
https://www.asus.com/support/FAQ/1045541/ | Exploit Vendor Advisory |
https://www.youtube.com/watch?v=1H3AfaVyeuk | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-03-31T19:26:31
Updated: 2021-03-31T19:26:31
Reserved: 2021-02-09T00:00:00
Link: CVE-2021-26943
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-03-31T20:15:14.130
Modified: 2021-04-07T14:12:42.170
Link: CVE-2021-26943
JSON object: View
Redhat Information
No data.
CWE