Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
InsydeInsydeh2o

65 matches found

CVE
CVEadded 2023/02/15 2:15 p.m.48 views

CVE-2022-32469

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the PnpSmm shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitigated using IOMMU protec...

7CVSS7.3AI score0.00048EPSS
CVE
CVEadded 2022/09/23 6:15 p.m.47 views

CVE-2022-36338

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. An SMM callout vulnerability in the SMM driver FwBlockServiceSmm, creating SMM, leads to arbitrary code execution. An attacker can replace the pointer to the UEFI boot service GetVariable with a pointer to malware, and then ge...

8.2CVSS8.2AI score0.00065EPSS
CVE
CVEadded 2023/04/12 1:15 p.m.46 views

CVE-2022-24350

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. IHISI function 0x17 verifies that the output buffer lies within the command buffer but does not verify that output data does not go beyond the end of the command buffer. In particular, the GetFlashTable function is...

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.46 views

CVE-2023-22612

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. A malicious host OS can invoke an Insyde SMI handler with malformed arguments, resulting in memory corruption in SMM.

8.8CVSS8.6AI score0.00174EPSS
CVE
CVEadded 2023/04/11 10:15 p.m.45 views

CVE-2023-22613

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in SMM memory corruption.

8.8CVSS8.3AI score0.00072EPSS
CVE
CVEadded 2023/11/02 9:15 p.m.43 views

CVE-2023-39284

An issue was discovered in IhisiServicesSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There are arbitrary calls to SetVariable with unsanitized arguments in the SMI handler.

5.5CVSS5.5AI score0.00057EPSS
CVE
CVEadded 2023/04/12 1:15 p.m.41 views

CVE-2023-22616

An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM.

7.8CVSS7.3AI score0.0006EPSS
CVE
CVEadded 2023/08/14 3:15 p.m.41 views

CVE-2023-31041

An issue was discovered in SysPasswordDxe in Insyde InsydeH2O with kernel 5.0 through 5.5. System password information could optionally be stored in cleartext, which might lead to possible information disclosure.

7.5CVSS7.1AI score0.00113EPSS
CVE
CVEadded 2022/09/28 4:15 p.m.37 views

CVE-2022-36448

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. There is an SMM memory corruption vulnerability in the Software SMI handler in the PnpSmm driver.

8.2CVSS8.2AI score0.00058EPSS
CVE
CVEadded 2024/04/22 6:15 p.m.37 views

CVE-2022-46897

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. The CapsuleIFWUSmm driver does not check the return value from a method or function. This can prevent it from detecting unexpected states and conditions.

5.3CVSS6.7AI score0.00019EPSS
CVE
CVEadded 2023/08/07 3:15 p.m.37 views

CVE-2023-27373

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. Due to insufficient input validation, an attacker can tamper with a runtime-accessible EFI variable to cause a dynamic BAR setting to overlap SMRAM.

5.5CVSS5.3AI score0.00051EPSS
CVE
CVEadded 2023/08/18 7:15 p.m.37 views

CVE-2023-27471

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. UEFI implementations do not correctly protect and validate information contained in the 'MeSetup' UEFI variable. On some systems, this variable can be overwritten using operating system APIs. Exploitation of this vulnerability...

5.5CVSS5.3AI score0.00057EPSS
CVE
CVEadded 2023/10/19 8:15 p.m.36 views

CVE-2023-30633

An issue was discovered in TrEEConfigDriver in Insyde InsydeH2O with kernel 5.0 through 5.5. It can report false TPM PCR values, and thus mask malware activity. Devices use Platform Configuration Registers (PCRs) to record information about device and software configuration to ensure that the boot ...

5.3CVSS4.8AI score0.00419EPSS
CVE
CVEadded 2023/12/16 2:15 a.m.33 views

CVE-2022-24351

TOCTOU race-condition vulnerability in Insyde InsydeH2O with Kernel 5.2 before version 05.27.29, Kernel 5.3 before version 05.36.29, Kernel 5.4 version before 05.44.13, and Kernel 5.5 before version 05.52.13 allows an attacker to alter data and code used by the remainder of the boot process.

4.7CVSS4.9AI score0.00032EPSS
CVE
CVEadded 2023/09/18 1:15 p.m.31 views

CVE-2023-34195

An issue was discovered in SystemFirmwareManagementRuntimeDxe in Insyde InsydeH2O with kernel 5.0 through 5.5. The implementation of the GetImage method retrieves the value of a runtime variable named GetImageProgress, and later uses this value as a function pointer. This variable is wiped out by t...

7.8CVSS7.7AI score0.00094EPSS
Total number of security vulnerabilities65