Kernel Security Vulnerabilities and Issues — Kernel CVE List

Lucene search

InsydeKernel

8 matches found

CVE•added 2022/11/15 12:15 a.m.•55 views

CVE-2022-33983

DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the NvmExpressLegacy driver could cause SMRAM ...

7CVSS6.9AI score0.00047EPSS

CVE•added 2022/11/15 12:15 a.m.•54 views

CVE-2022-33908

DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the SdHostDriver driver could cause SMRAM corrupti...

7CVSS6.8AI score0.00047EPSS

CVE•added 2022/11/15 12:15 a.m.•53 views

CVE-2022-33905

DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler could cause SMRAM corruption (a TOCTOU attack). DMA transactions which are targeted at input buffers used for the software SMI handler used by the AhciBusDxe driver could cause SMRAM corruption through...

7CVSS6.9AI score0.00047EPSS

CVE•added 2022/11/15 12:15 a.m.•52 views

CVE-2022-33984

DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the SdMmcDevice driver could cause SMRAM corruption...

7CVSS6.8AI score0.0005EPSS

CVE•added 2022/11/15 12:15 a.m.•51 views

CVE-2022-33909

DMA transactions which are targeted at input buffers used for the HddPassword software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the HddPassword driver could cause SMRAM corruption...

7CVSS6.9AI score0.00047EPSS

CVE•added 2022/11/22 2:15 a.m.•51 views

CVE-2022-35407

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. A stack buffer overflow leads to arbitrary code execution in the SetupUtility driver on Intel platforms. An attacker can change the values of certain UEFI variables. If the size of the second variable exceeds the size of the f...

7.8CVSS7.9AI score0.00069EPSS

CVE•added 2022/11/15 12:15 a.m.•42 views

CVE-2022-33985

DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the NvmExpressDxe driver could cause SMRAM corrup...

7CVSS6.9AI score0.00047EPSS

CVE•added 2022/11/15 9:15 p.m.•40 views

CVE-2022-30283

In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB transactions are in process leads to a TOCTOU problem that could be used by an attacker to cause SMRAM corruption and escalation of privileges The UsbCoreDxe module creates a working buffer for USB tran...

7.5CVSS7.9AI score0.00035EPSS