Vulnerability in Huawei Curiem-wfg9b
CVE-2023-52711
Various Issues Due To Exposed SMI Handler in AmdPspP2CmboxV2. The first issue can be leveraged to bypass the protections that have been put in place by previous UEFI phases to prevent direct access to the SPI flash. The second issue can be…
EPSS: 0.001 (1.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Huawei Curiem-wfg9b — versions CurieM-WFG9B BIOS 2.28
- Huawei Curiem-wfg9b_firmware — versions curiem-wfg9b_bios_2.28
Weakness classification (CWE)
References
- psirt@huawei.com (Vendor Advisory)
Frequently asked questions
- What is CVE-2023-52711?
- CVE-2023-52711 is a high-severity vulnerability in Huawei Curiem-wfg9b, classified under Improper Access Control. CVSS score: 7.8/10. Published 2024-05-28.
- How severe is CVE-2023-52711?
- High severity. CVSS v3 base score is 7.8 out of 10.