cvedb.io
CVE-2021-39298
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2022-02-16T17:15:10.860 · Last modified 2026-06-17T04:03:29.437

Summary

A potential vulnerability in AMD System Management Mode (SMM) interrupt handler may allow an attacker with high privileges to access the SMM resulting in arbitrary code execution which could be used by malicious actors to bypass security mechanisms provided in the UEFI firmware.

Affected products

hp — z1_entry_tower_g5_workstation_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when hp ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.