Insyde

Insydeh2o

80 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-27373

  • EPSS 0.05%
  • Published 07.08.2023 15:15:10
  • Last modified 07.03.2025 20:15:36

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. Due to insufficient input validation, an attacker can tamper with a runtime-accessible EFI variable to cause a dynamic BAR setting to overlap SMRAM.

7.8

CVE-2023-22616

Exploit
  • EPSS 0.06%
  • Published 12.04.2023 13:15:07
  • Last modified 10.02.2025 17:15:16

An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an att...

5.5

CVE-2022-24350

  • EPSS 0.04%
  • Published 12.04.2023 13:15:07
  • Last modified 19.03.2025 16:15:15

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. IHISI function 0x17 verifies that the output buffer lies within the command buffer but does not verify that output data does not go beyond the end of the command buf...

8.8

CVE-2023-22613

  • EPSS 0.07%
  • Published 11.04.2023 22:15:07
  • Last modified 11.02.2025 20:15:31

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in ...

8.4

CVE-2023-22615

  • EPSS 0.22%
  • Published 11.04.2023 21:15:17
  • Last modified 11.02.2025 21:15:10

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. IHISI subfunction execution may corrupt SMRAM. An attacker can pass an address in the RCX save state register that overlaps SMRAM, thereby coercing an IHISI subfunct...

8.8

CVE-2023-22614

Exploit
  • EPSS 0.15%
  • Published 11.04.2023 21:15:17
  • Last modified 11.02.2025 20:15:31

An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There is insufficient input validation in BIOS Guard updates. An attacker can induce memory corruption in SMM by supplying malformed inputs to the BIOS Guard SM...

8.8

CVE-2023-22612

  • EPSS 0.17%
  • Published 11.04.2023 21:15:17
  • Last modified 11.02.2025 18:15:21

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. A malicious host OS can invoke an Insyde SMI handler with malformed arguments, resulting in memory corruption in SMM.

7

CVE-2022-32477

  • EPSS 0.05%
  • Published 15.02.2023 14:15:12
  • Last modified 05.05.2025 17:18:14

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the FvbServicesRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalatio...

7

CVE-2022-32469

  • EPSS 0.05%
  • Published 15.02.2023 14:15:11
  • Last modified 05.05.2025 17:18:13

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the PnpSmm shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges...

7

CVE-2022-32475

  • EPSS 0.05%
  • Published 15.02.2023 14:15:11
  • Last modified 05.05.2025 17:18:14

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the VariableRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation o...