4 matches found
CVE-2021-33834
An issue was discovered in iscflashx64.sys 3.9.3.0 in Insyde H2OFFT 6.20.00. When handling IOCTL 0x22229a, the input used to allocate a buffer and copy memory is mishandled. This could cause memory corruption or a system crash...
The vulnerability of the IhisiSmm component of the InsydeH2O UEFI firmware creation framework allows a hacker to induce a service failure.
The vulnerability of the IhisiSmm component in the InsydeH2O UEFI firmware creation framework is related to state management errors. Exploiting this vulnerability could allow a remote attacker to cause system failures...
The vulnerability of the IdeBusDxe component in the InsydeH2O UEFI firmware creation framework, which involves writing beyond the buffer boundaries in memory, allows an attacker to execute arbitrary code on the target system.
The vulnerability of the IdeBusDxe component in the InsydeH2O UEFI firmware creation framework involves writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system...
Insyde InsydeH2O 缓冲区错误漏洞
Insyde InsydeH2O is a C source from Insyde Software Taiwan, China that implements the new technology "EFI/UEFI" specification, designed to replace the traditional BIOS Basic Input/Output System. Operating System H2O UEFI firmware suffers from a buffer overflow vulnerability that could be exploite...