CVE-2022-40080
- Reference to the description:
- Description:
- Stack overflow vulnerability in Aspire E5-475G 's BIOS firmware, in the FpGui module, a second call to GetVariable services allows local attackers to execute arbitrary code in the UEFI DXE phase and gain escalated privileges.
- Last updated date:
- 02/24/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/24/2023
- Reference url to background
https://github.com/10TG/vulnerabilities/blob/main/Acer/CVE-2022-40080/CVE-2022-40080.md