CVE-2017-3197

Summary

GIGABYTE BRIX UEFI firmware for the GB-BSi7H-6500 (version F6) and GB-BXi7-5775 (version F2) platforms does not securely implement BIOSWE, BLE, SMM_BWP, and PRx features. As a result, the BIOS is not protected from arbitrary write access and may permit modifications to the SPI flash.

Affected Software

VendorProductVersion RangeStatus
GIGABYTEGB-BSi7H-6500F6affected
GIGABYTEGB-BXi7-5775F2affected

Weaknesses

  • CWE-693: CWE-693: Protection Mechanism Failure

ADP Enrichment

CVE Program Container

Additional References

References