CVE-2021-38578: edk2: integer underflow in SmmEntryPoint function leads to potential SMM privilege escalation

Severity: Critical

CVSS Score: 9.8

Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.