Lucene search
K

142 matches found

Prion
Prion
added 2023/04/11 9:15 p.m.17 views

Code injection

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. IHISI subfunction execution may corrupt SMRAM. An attacker can pass an address in the RCX save state register that overlaps SMRAM, thereby coercing an IHISI subfunction handler to overwrite private SMRAM...

3.2CVSS8AI score0.00204EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/04/11 9:15 p.m.21 views

Memory corruption

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. A malicious host OS can invoke an Insyde SMI handler with malformed arguments, resulting in memory corruption in SMM...

4.3CVSS8.6AI score0.00228EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2023/04/11 9:15 p.m.22 views

Input validation

An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There is insufficient input validation in BIOS Guard updates. An attacker can induce memory corruption in SMM by supplying malformed inputs to the BIOS Guard SMI handler...

4.3CVSS8.6AI score0.00378EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/04/11 12:0 a.m.37 views

CVE-2023-22614

An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There is insufficient input validation in BIOS Guard updates. An attacker can induce memory corruption in SMM by supplying malformed inputs to the BIOS Guard SMI handler...

8.9AI score0.00378EPSS
Exploits1References3
CVE
CVE
added 2023/04/11 12:0 a.m.62 views

CVE-2023-22612

CVE-2023-22612 affects InsydeH2O firmware’s IhisiSmm component. The issue exists on InsydeH2O builds with kernels 5.0–5.5, where a malicious host OS can invoke the Insyde SMI handler with malformed arguments, leading to memory corruption in System Management Mode (SMM). Connected sources describe...

8.8CVSS8.6AI score0.00228EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/04/11 12:0 a.m.28 views

CVE-2023-22612

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. A malicious host OS can invoke an Insyde SMI handler with malformed arguments, resulting in memory corruption in SMM...

8.9AI score0.00228EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/04/11 12:0 a.m.34 views

CVE-2023-22613

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in SMM memory corruption...

8.7AI score0.00212EPSS
Exploits0References3
NVD
NVD
added 2023/02/15 2:15 p.m.47 views

CVE-2022-32469

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the PnpSmm shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

7CVSS8AI score0.00132EPSS
Exploits0References2
Prion
Prion
added 2023/02/15 2:15 p.m.26 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the PnpSmm shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

3.5CVSS7.7AI score0.00132EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/02/15 2:15 p.m.22 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the FvbServicesRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated...

3.5CVSS7.7AI score0.00132EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/02/15 3:15 a.m.43 views

CVE-2022-32473

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the HddPassword shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

7CVSS7.4AI score0.00132EPSS
Exploits0References2
NVD
NVD
added 2023/02/15 3:15 a.m.20 views

CVE-2022-32476

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the AhciBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

7CVSS7.4AI score0.00132EPSS
Exploits0References2
Prion
Prion
added 2023/02/15 3:15 a.m.21 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the AhciBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

3.5CVSS7.2AI score0.00132EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/02/15 3:15 a.m.17 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the FwBlockServiceSmm shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using...

3.5CVSS7.7AI score0.00132EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/02/15 3:15 a.m.21 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the SdHostDriver buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated by using IOMMU...

3.5CVSS7.7AI score0.00132EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/02/15 3:15 a.m.21 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the HddPassword shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

3.5CVSS7.2AI score0.00132EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/02/15 2:15 a.m.21 views

CVE-2022-32474

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the StorageSecurityCommandDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigat...

7CVSS7.4AI score0.00132EPSS
Exploits0References2
NVD
NVD
added 2023/02/15 2:15 a.m.36 views

CVE-2022-32471

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. The IhisiDxe driver uses the command buffer to pass input and output data. By modifying the command buffer contents with DMA after the input parameters have been checked but before they are used, the IHISI SMM co...

7CVSS8.1AI score0.00132EPSS
Exploits0References2
Prion
Prion
added 2023/02/15 2:15 a.m.21 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the IdeBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU...

3.5CVSS7.2AI score0.00132EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/02/15 2:15 a.m.23 views

Race condition

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the NvmExpressDxe buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated by using IOMMU...

3.5CVSS7.2AI score0.00132EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder