Lucene search
K

45 matches found

CNNVD
CNNVD
added 2022/11/15 12:0 a.m.4 views

Insyde InsydeH2O 代码问题漏洞

Insyde InsydeH2O is a C-language source from Insyde Corporation of Taiwan, which implements the new technology "EFI/UEFI" specification designed to replace the traditional BIOS Basic Input/Output System. A security vulnerability exists in Insyde InsydeH2O 5.1 to 5.5, which stems from incorrect...

8.2CVSS7.8AI score0.00193EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/11/15 12:0 a.m.32 views

CVE-2022-29278

Incorrect pointer checks within the NvmExpressDxe driver can allow tampering with SMRAM and OS memory Incorrect pointer checks within the NvmExpressDxe driver can allow tampering with SMRAM and OS memory. This issue was discovered by Insyde during security review. Fixed in: Kernel 5.1: Version...

8.4AI score0.00193EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.9 views

CVE-2022-29278

Incorrect pointer checks within the NvmExpressDxe driver can allow tampering with SMRAM and OS memory Incorrect pointer checks within the NvmExpressDxe driver can allow tampering with SMRAM and OS memory. This issue was discovered by Insyde during security review. Fixed in: Kernel 5.1: Version...

7.3AI score0.00193EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/11/15 12:0 a.m.4 views

PT-2022-19518 · Insyde · Nvmexpressdxe

Name of the Vulnerable Software and Affected Versions: NvmExpressDxe driver versions prior to 05.17.23 NvmExpressDxe driver versions prior to 05.27.23 NvmExpressDxe driver versions prior to 05.36.23 NvmExpressDxe driver versions prior to 05.44.23 NvmExpressDxe driver versions prior to 05.52.23...

8.2CVSS8AI score0.00193EPSS
Exploits0References4
CVE
CVE
added 2022/11/15 12:0 a.m.82 views

CVE-2022-29278

The CVE-2022-29278 entry involves the NvmExpressDxe driver with incorrect pointer checks that can allow tampering with SMRAM and OS memory. This vulnerability is documented across multiple security trackers (e.g., Insyde InsydeH2O BIOS context) and is tied to specific fixed kernel versions: 5.1 -...

8.2CVSS8.1AI score0.00193EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/14 12:0 a.m.8 views

CVE-2022-33985

DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the NvmExpressDxe driver could cause SMRAM...

7.2AI score0.00132EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/14 12:0 a.m.31 views

CVE-2022-33985

DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the NvmExpressDxe driver could cause SMRAM...

7.1AI score0.00132EPSS
Exploits0References2
CVE
CVE
added 2022/11/14 12:0 a.m.54 views

CVE-2022-33985

The CVE-2022-33985 issue affects the NvmExpressDxe driver’s SMI input buffers. It enables a TOCTOU vulnerability that can lead to SMRAM corruption via DMA targeted at the SMI handler input buffers. The problem is fixed in kernel updates: 5.2 (05.27.25), 5.3 (05.36.25), 5.4 (05.44.25), and 5.5 (05...

7CVSS6.9AI score0.00132EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2022/02/03 2:15 a.m.16 views

CVE-2021-41840

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary code. This occurs because of Inclusion of Functionality from an Untrusted Control Sphere...

8.2CVSS0.00301EPSS
Exploits0References5
OSV
OSV
added 2022/02/03 2:15 a.m.0 views

CVE-2021-41840

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary code. This occurs because of Inclusion of Functionality from an Untrusted Control Sphere...

8.2CVSS6AI score
Exploits0References5
OSV
OSV
added 2022/02/03 2:15 a.m.2 views

CVE-2022-24031

An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM...

8.2CVSS7.3AI score0.00279EPSS
Exploits0References5
NVD
NVD
added 2022/02/03 2:15 a.m.15 views

CVE-2021-41839

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges...

8.2CVSS0.00274EPSS
Exploits0References5
NVD
NVD
added 2022/02/03 2:15 a.m.22 views

CVE-2022-24031

An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM...

8.2CVSS0.00279EPSS
Exploits0References5
Prion
Prion
added 2022/02/03 2:15 a.m.15 views

Memory corruption

An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM...

7.2CVSS8.1AI score0.00279EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2022/02/03 2:15 a.m.19 views

Code injection

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary code. This occurs because of Inclusion of Functionality from an Untrusted Control Sphere...

7.2CVSS8.2AI score0.00301EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2022/02/03 2:15 a.m.25 views

Null pointer dereference

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges...

4.6CVSS7.9AI score0.00274EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2022/02/03 1:59 a.m.84 views

CVE-2022-24031

CVE-2022-24031 affects InsydeH2O’s NvmExpressDxe driver across kernel 5.1–5.5, enabling an SMM memory corruption that could allow an attacker to write fixed or predictable data to SMRAM and escalate to SMM privileges. The related Nessus/Tenable entry, CERT/CC advisories, and vendor communications...

8.2CVSS8.1AI score0.00279EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2022/02/03 1:59 a.m.23 views

CVE-2022-24031

An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM...

8.4AI score0.00279EPSS
Exploits0References4
CVE
CVE
added 2022/02/03 1:37 a.m.88 views

CVE-2021-41839

CVE-2021-41839 affects the InsydeH2O/ NvmExpressDxe driver in kernel versions 5.0–5.5. The root cause is an Untrusted Pointer Dereference that can corrupt SMM memory (SMRAM), enabling a local attacker to escalate privileges to System Management Mode. Public records describe the issue as a SMM mem...

8.2CVSS7.9AI score0.00274EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2022/02/03 1:37 a.m.17 views

CVE-2021-41839

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges...

8.2AI score0.00274EPSS
Exploits0References4
Rows per page
Query Builder