Lucene search

PRIOn knowledge basePRION:CVE-2023-22613

HistoryApr 11, 2023 - 10:15 p.m.

Memory corruption

2023-04-1122:15:00

PRIOn knowledge base

www.prio-n.com

ihisismm

memory corruption

insydeh2o

kernel 5.0-5.5

smi handler

rcx

smram

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in SMM memory corruption.

CPENameOperatorVersion
insydeh2oeq05.27.37
insydeh2oeq05.36.37
insydeh2oeq05.44.45
insydeh2oeq05.52.45

Name	Operator	Version
insydeh2o	eq	05.27.37
insydeh2o	eq	05.36.37
insydeh2o	eq	05.44.45
insydeh2o	eq	05.52.45

References

research.nccgroup.com/2023/04/11/stepping-insyde-system-management-mode/

www.insyde.com/security-pledge

www.insyde.com/security-pledge/SA-2023023