2 matches found
CVE-2021-41837
An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to...
CVE-2021-41837
CVE-2021-41837 affects InsydeH2O’s AhciBusDxe driver in kernel versions 5.0–5.5. The flaw stems from an Untrusted Pointer Dereference that can corrupt SMM memory (SMRAM) and enable a local attacker to escalate privileges to System Management Mode. Public documentation (NVD/Tenable, Binarly/CERT a...