1 results (0.023 seconds)
CVSS: 8.2EPSS: 0%CPEs: 10EXPL: 0
CVE-2022-4020 – Acer Aspire BIOS vulnerability
https://notcve.org/view.php?id=CVE-2022-4020
Vulnerability in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying an NVRAM variable. Una vulnerabilidad en el controlador HQSwSmiDxe DXE en algunos dispositivos portátiles Acer de consumo puede permitir que un atacante con privilegios elevados modifique la configuración de arranque seguro UEFI modificando una variable NVRAM. • https://community.acer.com/en/kb/articles/15520-security-vulnerability-regarding-vulnerability-that-may-allow-changes-to-secure-boot-settings • CWE-276: Incorrect Default Permissions •