Certain Micro-Star International (MSI) motherboards have a buffer overflow vulnerability which allows an attacker to execute arbitrary code. See the CVE reference for specific MSI motherboards that are vulnerable.
The vulnerability is in specific SMM modules supplied by MSI. System Management Mode (SMM) is a highly privileged operating environment that runs the firmware’s most sensitive code. It exists on all x86 processors, and it operates independently of the operating system. SMM provides an isolated execution environment where critical firmware operations take place (such as power management functions or live updating the system’s BIOS).
CVE-2024-36877 | Reference Article | MSI Corporate Security Policy
Â
