Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/26 12:0 a.m.22 views

Siemens InsydeH2O Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2021-41839)

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges...

8.2CVSS7.7AI score0.00274EPSS
Exploits0References5
Circl
Circl
added 2022/02/03 7:29 a.m.9 views

CVE-2021-41839

creationtimestamp| type| source ---|---|--- 2022-02-03 07:29:39+00:00| seen| https://t.me/cibsecurity/36742...

8.2CVSS7.9AI score0.00274EPSS
Exploits0References1
NVD
NVD
added 2022/02/03 2:15 a.m.17 views

CVE-2021-41839

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges...

8.2CVSS0.00274EPSS
Exploits0References5
CVE
CVE
added 2022/02/03 1:37 a.m.90 views

CVE-2021-41839

CVE-2021-41839 affects the InsydeH2O/ NvmExpressDxe driver in kernel versions 5.0–5.5. The root cause is an Untrusted Pointer Dereference that can corrupt SMM memory (SMRAM), enabling a local attacker to escalate privileges to System Management Mode. Public records describe the issue as a SMM mem...

8.2CVSS7.9AI score0.00274EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder