CVE-2024-25078

Insyde InsydeH2O contains a memory corruption vulnerability in StorageSecurityCommandDxe that could lead to privilege escalation in SMM. Affected: Insyde InsydeH2O before kernel 5.2 (fix IB19130163 in 05.29.07), before kernel 5.3 (fix in 05.38.07), before kernel 5.4 (fix in 05.46.07), before kern...