Lucene search
+L

26 matches found

Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.4 views

PT-2022-20634 · Insyde · Fvbservicesruntimedxe

Name of the Vulnerable Software and Affected Versions: FvbServicesRuntimeDxe driver versions prior to Kernel 5.2: 05.27.21 FvbServicesRuntimeDxe driver versions prior to Kernel 5.3: 05.36.21 FvbServicesRuntimeDxe driver versions prior to Kernel 5.4: 05.44.21 FvbServicesRuntimeDxe driver versions...

6.4CVSS6.9AI score0.00151EPSS
Exploits0References6
NVD
NVD
added 2022/09/28 4:15 p.m.26 views

CVE-2022-36448

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. There is an SMM memory corruption vulnerability in the Software SMI handler in the PnpSmm driver...

8.2CVSS0.0032EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/09/28 3:50 p.m.8 views

CVE-2022-36448

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. There is an SMM memory corruption vulnerability in the Software SMI handler in the PnpSmm driver...

8.3AI score0.0032EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/02/02 12:0 a.m.4 views

Insyde InsydeH2O 缓冲区错误漏洞

Insyde InsydeH2O is a C source from Insyde Software Taiwan, China that implements the new technology "EFI/UEFI" specification, designed to replace the legacy BIOS Basic Input/Output System. The vulnerability can be exploited to read or write to or manipulate data in SMRAM, resulting in an...

8.2CVSS5.6AI score0.00301EPSS
Exploits0References8
OSV
OSV
added 2022/01/05 11:15 p.m.3 views

CVE-2021-45970

An issue was discovered in IdeBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2 before 05.26.25, 5.3 before 05.35.25, 5.4 before 05.43.25, and 5.5 before 05.51.25. A vulnerability exists in the SMM System Management Mode branch that registers a SWSMI handler that does not sufficient...

8.2CVSS7.7AI score0.00326EPSS
Exploits0References4
CVE
CVE
added 2022/01/05 10:55 p.m.76 views

CVE-2020-5956

CVE-2020-5956 affects InsydeInsydeH2O SdLegacySmm: SMI handler in the BIOS/UEFI code does not verify CommBuffer, allowing untrusted input. Affected when kernel 5.1 before 05.15.11, 5.2 before 05.25.11, 5.3 before 05.34.11, or 5.4 before 05.42.11. Documented impact includes partial integrity and n...

7.5CVSS7.4AI score0.00806EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder