A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-88

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege

Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary

Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary c

An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection a

A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may re

Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit