High Severity Vulnerability in Acer Notebook Devices

A vulnerability has been discovered in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices, which may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying an NVRAM variable. This could compromise the system integrity and security. Acer recommends customers to update their BIOS firmware to the latest version from the official Acer website as soon as possible to prevent any potential exploitation. Customers can find out more details on CVE-2022-4020.

Acer ArticleCVE-2022-4020