Gigabyte UEFI Firmware Vulnerability Let Attackers Execute Arbitrary Code in the SMM Environment

Score: 57/100 Cybersecurity News 2 days ago Part of cluster #1148

Critical security vulnerabilities have been discovered in Gigabyte UEFI firmware that could allow attackers to execute arbitrary code in System Management Mode (SMM), one of the most privileged execution environments in modern processors. The vulnerabilities, disclosed by the Software Engineering Institute’s CERT Coordination Center on July 11, 2025, affect multiple Gigabyte systems and could enable attackers to bypass fundamental security protections, including Secure Boot and Intel BootGuard. ...

Continue Reading on Original Site

Threat Intelligence

Ransomware 1

One

Attack Types 1

Phishing

MITRE ATT&CK 1

Phishing

Business Intelligence

Companies 2

Intel Microsoft

Agencies 1

CERT

Technical Indicators

CVEs 4

CVE-2025-7029 CVE-2025-7028 CVE-2025-7027

Domains

ANY.RUN

Information

Article ID: #2926
Published: 2 days ago
Source: Cybersecurity News

Gigabyte UEFI Firmware Vulnerability Let Attackers Execute Arbitrary Code in the SMM Environment

Recommended Articles

2025-07-17 - Cluster AI Daily Threat Brief

UK NCSC Announces Software Vulnerability Initiative

Cloudflare Confirms Recent 1.1.1.1 DNS Outage Caused by BGP Attack or Hijack

Cloudflare Confirms BGP Hijack Behind 1.1.1.1 DNS Disruption

Europol Takes Down NoName057(16)’s Global Network of Over 100 Servers

Recommended Articles

2025-07-17 - Cluster AI Daily Threat Brief

UK NCSC Announces Software Vulnerability Initiative

Cloudflare Confirms Recent 1.1.1.1 DNS Outage Caused by BGP Attack or Hijack

Cloudflare Confirms BGP Hijack Behind 1.1.1.1 DNS Disruption

Europol Takes Down NoName057(16)’s Global Network of Over 100 Servers

Save to Folder

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies