CVE-2025-7026

HIGH 8.2

SMM Arbitrary Write via Unchecked RBX Pointer in CommandRcx0

CVSS Score

8.2

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability in the Software SMI handler (SwSmiInputValue 0xB2) allows a local attacker to control the RBX register, which is used as an unchecked pointer in the CommandRcx0 function. If the contents at RBX match certain expected values (e.g., '$DB$' or '2DB$'), the function performs arbitrary writes to System Management RAM (SMRAM), leading to potential privilege escalation to System Management Mode (SMM) and persistent firmware compromise.

Vendor	gigabyte
Product	uefi-genericcomponentsmmentry
Published	Jul 11, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for gigabyte uefi-genericcomponentsmmentry

Be the first to know when new high vulnerabilities affecting gigabyte uefi-genericcomponentsmmentry are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

GIGABYTE / UEFI-GenericComponentSmmEntry

1.0.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

gigabyte.com: https://www.gigabyte.com/Support/Security binarly.io: https://www.binarly.io/advisories/brly-dva-2025-008 kb.cert.org: https://kb.cert.org/vuls/id/746790 kb.cert.org: https://www.kb.cert.org/vuls/id/746790