6 matches found
Siemens InsydeH2O Insufficient Input Validation (CVE-2023-22616)
An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM. Insyde BIOS is typical...
CVE-2023-22616
creationtimestamp| type| source ---|---|--- 2023-04-12 16:23:41+00:00| seen| https://t.me/cibsecurity/61970...
CVE-2023-22616
An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM...
CVE-2023-22616
An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM...
CVE-2023-22616
An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM...
CVE-2023-22616
CVE-2023-22616 affects Insyde InsydeH2O BIOS (kernel 5.2–5.5) with the IhisiSmm driver failing to validate the Save State register before use, enabling potential SMRAM corruption due to insufficient input validation. The documents specify the vulnerability and impact but do not provide an explici...