Acer
Predator
ConceptD
Planet9
Acer Swift 3 Vulnerability May Allow Deactivation of Critical Protections Allowing Read/Write Access to the System Management Mode - Acer Community
<main> <article class="userContent"> <h2 data-id="vulnerability-details">VULNERABILITY DETAILS</h2><p>Researchers have identified a vulnerability that may allow deactivation of critical protections used for the TSEG region, which stores SMM code, after the system has booted. This may allow a privileged attacker to deactivate the configured TSEG region protections and thus obtain read/write access to the System Management Mode (SMM), thus fully compromising it.</p><h2 data-id="impact-scope">Impact Scope</h2><p>Acer Swift 3 with BIOS v1.10A or older</p><h2 data-id="resolution">Resolution</h2><p>Acer has released a <a href="https://www.acer.com/us-en/support?search=SF314-42&filter=global_download&suggest=SF314-;0" rel="nofollow noreferrer ugc">BIOS update (v1.11)</a> to address this concern. We recommend downloading and updating your BIOS immediately. You can find the latest BIOS for your device on our <a href="https://www.acer.com/us-en/support/drivers-and-manuals" rel="nofollow noreferrer ugc">Drivers and Manuals</a> site.</p><h2 data-id="credit">Credit</h2><p>Acer thanks Enrique Nissim, Krzysztof Okupski and Joseph Tartaro from IOActive for reporting this issue.</p><h2 data-id="disclaimer">Disclaimer</h2><p>THE ABOVE INFORMATION IS PROVIDED "AS IS" IN CONNECTION WITH ACER AND INTEL® PRODUCTS. YOUR USE OF THE INFORMATION OR MATERIALS LINKED FROM THIS PAGE IS AT YOUR OWN RISK. ACER RESERVES THE RIGHT TO CHANGE OR UPDATE THIS PAGE AT ANY TIME.</p> </article> </main>