In System Management Module (SMM) versions before 1.06, the SMM certificate creation and parsing logic is vulnerable to post-authentication command injection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lenovo system_management_module_firmware |