5.5

CVE-2023-40238

Exploit

EPSS 0.1%
Published 07.12.2023 04:15:06
Last modified 21.11.2024 08:19:02
Source cve@mitre.org
Teams watchlist Login
Open Login

A LogoFAIL issue was discovered in BmpDecoderDxe in Insyde InsydeH2O with kernel 5.2 before 05.28.47, 5.3 before 05.37.47, 5.4 before 05.45.47, 5.5 before 05.53.47, and 5.6 before 05.60.47 for certain Lenovo devices. Image parsing of crafted BMP logo files can copy data to a specific address during the DXE phase of UEFI execution. This occurs because of an integer signedness error involving PixelHeight and PixelWidth during RLE4/RLE8 compression.

Affected products Warnungen 0 Metrics 2 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Insyde ≫ Insydeh2o Version >= 5.2 < 5.2.05.28.47

Insyde ≫ Insydeh2o Version >= 5.3 < 5.3.05.37.47

Insyde ≫ Insydeh2o Version >= 5.4 < 5.4.05.45.47

Insyde ≫ Insydeh2o Version >= 5.5 < 5.5.05.53.47

Insyde ≫ Insydeh2o Version >= 5.6 < 5.6.05.60.47

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.283

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-312 Cleartext Storage of Sensitive Information

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

https://www.insyde.com/security-pledge

Vendor Advisory

https://www.kb.cert.org/vuls/id/811862

https://binarly.io/posts/finding_logofail_the_dangers_of_image_parsing_during_system_boot/index.html

Exploit

https://security.netapp.com/advisory/ntap-20240105-0002/

https://www.insyde.com/security-pledge/SA-2023053

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-40238

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-40238

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-40238

EUVD