CVE-2017-3197

CVE-2017-3197: GIGABYTE BRIX UEFI firmware fails to securely implement BIOS write protection

Vendor Gigabyte
Product GB-BSi7H-6500
Weakness CWE-693
Published July 9, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

GIGABYTE BRIX UEFI firmware for the GB-BSi7H-6500 (version F6) and GB-BXi7-5775 (version F2) platforms does not securely implement BIOSWE, BLE, SMM_BWP, and PRx features. As a result, the BIOS is not protected from arbitrary write access and may permit modifications to the SPI flash.

Key dates

02Disclosure timeline

July 9, 2018 CVE published
August 5, 2024 Record updated