Insecure Implementation of BIOSWE, BLE, SMM_BWP, and PRx Features in GIGABYTE BRIX UEFI Firmware

Insecure Implementation of BIOSWE, BLE, SMM_BWP, and PRx Features in GIGABYTE BRIX UEFI Firmware

CVE-2017-3197 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

GIGABYTE BRIX UEFI firmware for the GB-BSi7H-6500 (version F6) and GB-BXi7-5775 (version F2) platforms does not securely implement BIOSWE, BLE, SMM_BWP, and PRx features. As a result, the BIOS is not protected from arbitrary write access and may permit modifications to the SPI flash.

Learn more about our Cis Benchmark Audit For Apple Ios.