Improper Input Validation Vulnerability in ASUS VivoMini/Mini PC Devices

CVE-2022-21933 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

ASUS VivoMini/Mini PC device has an improper input validation vulnerability. A local attacker with system privilege can use system management interrupt (SMI) to modify memory, resulting in arbitrary code execution for controlling the system or disrupting service.

Learn more about our Web Application Penetration Testing UK.