Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
insyde kernel 5.4 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-38578
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
Tianocore Edk2
Insyde Kernel 5.0
Insyde Kernel 5.2
Insyde Kernel 5.3
Insyde Kernel 5.4
Insyde Kernel 5.5
Insyde Kernel 5.1
9.8
CVSSv3
CVE-2021-41842
An issue exists in AtaLegacySmm in the kernel 5.0 prior to 05.08.46, 5.1 prior to 05.16.46, 5.2 prior to 05.26.46, 5.3 prior to 05.35.46, 5.4 prior to 05.43.46, and 5.5 prior to 05.51.45 in Insyde InsydeH2O. Code execution can occur because the SMI handler lacks a CommBuffer chec...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2022-29278
Incorrect pointer checks within the NvmExpressDxe driver can allow tampering with SMRAM and OS memory Incorrect pointer checks within the NvmExpressDxe driver can allow tampering with SMRAM and OS memory. This issue exists by Insyde during security review. Fixed in: Kernel 5.1: V...
Insyde Kernel
8.2
CVSSv3
CVE-2022-29279
Use of a untrusted pointer allows tampering with SMRAM and OS memory in SdHostDriver and SdMmcDevice Use of a untrusted pointer allows tampering with SMRAM and OS memory in SdHostDriver and SdMmcDevice. This issue exists by Insyde during security review. It was fixed in: Kernel 5...
Insyde Kernel
8.2
CVSSv3
CVE-2022-29276
SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM. SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM. This issue exists by Insyde during security review. It was fixed in: Kernel 5.0: version 05.09.18 Kernel 5.1: version ...
Insyde Kernel
8.2
CVSSv3
CVE-2022-30771
Initialization function in PnpSmm could lead to SMRAM corruption when using subsequent PNP SMI functions Initialization function in PnpSmm could lead to SMRAM corruption when using subsequent PNP SMI functions. This issue exists by Insyde engineering during a security review. Fix...
Insyde Kernel
8.2
CVSSv3
CVE-2022-29275
In UsbCoreDxe, untrusted input may allow SMRAM or OS memory tampering Use of untrusted pointers could allow OS or SMRAM memory tampering leading to escalation of privileges. This issue exists by Insyde during security review. It was fixed in: Kernel 5.0: version 05.09.21 Kernel 5...
Insyde Kernel
8.2
CVSSv3
CVE-2022-30772
Manipulation of the input address in PnpSmm function 0x52 could be used by malware to overwrite SMRAM or OS kernel memory. Function 0x52 of the PnpSmm driver is passed the address and size of data to write into the SMBIOS table, but manipulation of the address could be used by ma...
Insyde Kernel
8.2
CVSSv3
CVE-2021-43323
An issue exists in UsbCoreDxe in Insyde InsydeH2O with kernel 5.5 prior to 05.51.45, 5.4 prior to 05.43.45, 5.3 prior to 05.35.45, 5.2 prior to 05.26.45, 5.1 prior to 05.16.45, and 5.0 prior to 05.08.45. An SMM callout vulnerability allows an malicious user to hijack execution fl...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2021-43615
An issue exists in HddPassword in Insyde InsydeH2O with kernel 5.1 prior to 05.16.23, 5.2 prior to 05.26.23, 5.3 prior to 05.35.23, 5.4 prior to 05.43.22, and 5.5 prior to 05.51.22. An SMM memory corruption vulnerability allows an malicious user to write fixed or predictable data...
Insyde Insydeh2o
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »