Thinkpwn – SMM Exploit outhere

An attacker exploiting the vulnerability will gain privileges that will allow them to run arbitrary code in System Management mode and potentially disable flash write protection which defends against code execution. An attacker would also be able to shut down other security protections such as Secure Boot or bypass Virtual Secure Mode, including Credential Guard, on Windows 10 machines.”

See more at: Scope of ThinkPwn UEFI Zero Day Expands