CVE-2022-40080 Information

Description

Stack overflow vulnerability in Aspire E5-475G ’s BIOS firmware in the FpGui module a second call to GetVariable services allows local attackers to execute arbitrary code in the UEFI DXE phase and gain escalated privileges.

Reference

https://acer.com/ https://github.com/10TG/vulnerabilities/blob/main/Acer/CVE-2022-40080/CVE-2022-40080.md