Attackers Can Upload Malware in System Management Mode and Disable Secure Boot. Multiple high-severity vulnerabilities in Gigabyte’s UEFI firmware could enable attackers to execute arbitrary code within System Management Mode, granting persistent and nearly undetectable control over affected systems, cybersecurity researchers reported.
First seen on govinfosecurity.com
Jump to article: www.govinfosecurity.com/ghost-in-machine-exploits-spotted-in-gigabyte-firmware-a-28973
