PT-2025-6405 · Red Os · Red Os

Yngweijw

Published

2025-02-11

Updated

2025-09-23

CVE-2023-31342

CVSS v3.1

7.5

High

Vector

AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description The issue is related to improper input validation in the SMM handler, which may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1220CWE-20

Related Identifiers

BDU:2025-02691

CVE-2023-31342

Affected Products

Red Os

PT-2025-6405 · Red Os · Red Os

CVE-2023-31342

Weakness Enumeration

Related Identifiers

Affected Products

References · 12