The vulnerability lets a destructive minimal-privileged PAM person to access details about other PAM buyers as well as their group memberships.
while in the Linux kernel, the following vulnerability is solved: mtd: https://mediajx.com/story19525055/smm-vs-mgus-can-be-fun-for-anyone