78 matches found
CVE-2022-33982
DMA attacks on the parameter buffer used by the Int15ServiceSmm software SMI handler could lead to a TOCTOU attack on the SMI handler and lead to corruption of SMRAM. DMA attacks on the parameter buffer used by the software SMI handler used by the driver Int15ServiceSmm could lead to a TOCTOU...
Design/Logic Flaw
DMA attacks on the parameter buffer used by the Int15ServiceSmm software SMI handler could lead to a TOCTOU attack on the SMI handler and lead to corruption of SMRAM. DMA attacks on the parameter buffer used by the software SMI handler used by the driver Int15ServiceSmm could lead to a TOCTOU...
Hardcoded credentials
DMA transactions which are targeted at input buffers used for the software SMI handler used by the IdeBusDxe driver could cause SMRAM corruption through a TOCTOU attack... DMA transactions which are targeted at input buffers used for the software SMI handler used by the IdeBusDxe driver could cau...
CVE-2022-32266
DMA attacks on the parameter buffer used by a software SMI handler used by the driver PcdSmmDxe could lead to a TOCTOU attack on the SMI handler and lead to corruption of other ACPI fields and adjacent memory fields. DMA attacks on the parameter buffer used by a software SMI handler used by the...
CVE-2022-33906
DMA transactions which are targeted at input buffers used for the FwBlockServiceSmm software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the FwBlockServiceSmm driver could cause...
CVE-2022-31243
Update description and links DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption through a TOCTOU attack.. "DMA transactions which are targeted at input buffers used for the software SMI handl...
CVE-2022-30774
DMA attacks on the parameter buffer used by the PnpSmm driver could change the contents after parameter values have been checked but before they are used a TOCTOU attack DMA attacks on the parameter buffer used by the PnpSmm driver could change the contents after parameter values have been checke...
CVE-2022-32267
DMA transactions which are targeted at input buffers used for the SmmResourceCheckDxe software SMI handler cause SMRAM corruption a TOCTOU attack DMA transactions which are targeted at input buffers used for the software SMI handler used by the SmmResourceCheckDxe driver could cause SMRAM...
CVE-2022-33983
DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the NvmExpressLegacy driver could cause SMRA...
CVE-2022-33908
CVE-2022-33908 affects the SdHostDriver SMI handler: DMA targeted at input buffers can cause SMRAM corruption via a TOCTOU race condition. The issue is caused by TOCTOU in DMA handling of the SdHostDriver software SMI input buffers. Affected software/hardware is described in the Siemens/Insyde ma...
CVE-2022-33909
DMA transactions which are targeted at input buffers used for the HddPassword software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the HddPassword driver could cause SMRAM corrupti...
CVE-2022-32266
The connected records provide concrete details for CVE-2022-32266 affecting Insyde InsydeH2O. The vulnerability arises from DMA attacks against the parameter buffer used by the PcdSmmDxe software SMI handler, enabling a TOCTOU race condition that can corrupt other ACPI fields and adjacent memory....
CVE-2022-33984
DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the SdMmcDevice driver could cause SMRAM corrupti...
CVE-2022-33908
DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the SdHostDriver driver could cause SMRAM...
CVE-2022-33905
DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler could cause SMRAM corruption a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the AhciBusDxe driver could cause SMRAM corruption through...
CVE-2022-33985
DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the NvmExpressDxe driver could cause SMRAM...
CVE-2022-32267
CVE-2022-32267 concerns DMA targeting input buffers used by the SmmResourceCheckDxe SMI handler in InsydeH2O UEFI firmware, leading to SMRAM corruption via a TOCTOU vulnerability. The issue, discovered by Insyde engineering, is mitigated by kernel updates: Kernel 5.2 (05.27.23), 5.3 (05.36.23), 5...
CVE-2022-33984
The CVE-2022-33984 entry describes a TOCTOU DMA vulnerability affecting the SdMmcDevice SMI handler that can corrupt SMRAM. Connected sources expand to multiple TOCTOU flaws in Insyde-managed firmware (various SMI handlers such as SdHostDriver, FvbServicesRuntimeDxe, IdeBusDxe) with CVEs 2022-307...
CVE-2022-33909
CVE-2022-33909 is a TOCTOU-related DMA vulnerability affecting the HddPassword SMI handler in InsydeH2O firmware. The issue arises from DMA transactions targeting input buffers used by the software SMI handler, potentially allowing SMRAM corruption. Public documentation confirms a fix was applied...
CVE-2022-33985
The CVE-2022-33985 issue affects the NvmExpressDxe driver’s SMI input buffers. It enables a TOCTOU vulnerability that can lead to SMRAM corruption via DMA targeted at the SMI handler input buffers. The problem is fixed in kernel updates: 5.2 (05.27.25), 5.3 (05.36.25), 5.4 (05.44.25), and 5.5 (05...