Lucene search
+L

4 matches found

ATTACKERKB
ATTACKERKB
added 2023/09/08 2:15 a.m.2 views

CVE-2021-33834

An issue was discovered in iscflashx64.sys 3.9.3.0 in Insyde H2OFFT 6.20.00. When handling IOCTL 0x22229a, the input used to allocate a buffer and copy memory is mishandled. This could cause memory corruption or a system crash...

7.1CVSS7.3AI score0.00187EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/04/22 12:0 a.m.6 views

The vulnerability of the IhisiSmm component of the InsydeH2O UEFI firmware creation framework allows a hacker to induce a service failure.

The vulnerability of the IhisiSmm component in the InsydeH2O UEFI firmware creation framework is related to state management errors. Exploiting this vulnerability could allow a remote attacker to cause system failures...

6.4CVSS7.5AI score0.00204EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/03/01 12:0 a.m.8 views

The vulnerability of the IdeBusDxe component in the InsydeH2O UEFI firmware creation framework, which involves writing beyond the buffer boundaries in memory, allows an attacker to execute arbitrary code on the target system.

The vulnerability of the IdeBusDxe component in the InsydeH2O UEFI firmware creation framework involves writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system...

8.2CVSS8.4AI score0.00326EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2022/02/02 12:0 a.m.8 views

Insyde InsydeH2O 缓冲区错误漏洞

Insyde InsydeH2O is a C source from Insyde Software Taiwan, China that implements the new technology "EFI/UEFI" specification, designed to replace the traditional BIOS Basic Input/Output System. Operating System H2O UEFI firmware suffers from a buffer overflow vulnerability that could be exploite...

7.2CVSS6.4AI score0.00345EPSS
Exploits0References7
Rows per page
Query Builder