PT-2022-21899 · Insyde · Insydeh2O Uefi Firmware

Name of the Vulnerable Software and Affected Versions: InsydeH2O UEFI firmware kernel versions prior to 5.2: 05.27.25 InsydeH2O UEFI firmware kernel versions prior to 5.3: 05.36.25 InsydeH2O UEFI firmware kernel versions prior to 5.4: 05.44.25 Description: DMA transactions targeted at input buffe...

Insyde InsydeH2O 缓冲区错误漏洞

Insyde InsydeH2O is a C source from Insyde Software Taiwan, China that implements the new technology "EFI/UEFI" specification, designed to replace the legacy BIOS Basic Input/Output System. The vulnerability can be exploited to read or write or manipulate data to SMRAM, resulting in an escalation...