Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
smm vulnerabilities and exploits
(subscribe to this query)
614
VMScore
CVE-2021-43522
An issue exists in Insyde InsydeH2O with kernel 5.1 through 2021-11-08, 5.2 through 2021-11-08, and 5.3 through 2021-11-08. A StorageSecurityCommandDxe SMM memory corruption vulnerability allows an malicious user to write fixed or predictable data to SMRAM. Exploiting this issue ...
Insyde Insydeh2o
641
VMScore
CVE-2021-41838
An issue exists in SdHostDriver in the kernel 5.0 up to and including 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an malicious user to access the System Management Mode and execute arbitrary code. This occurs because of a Numeric Range Comparison Without a Minimu...
Insyde Insydeh2o
Siemens Simatic Field Pg M5 Firmware
Siemens Simatic Field Pg M6 Firmware
Siemens Simatic Ipc127e Firmware
Siemens Simatic Ipc227g Firmware
Siemens Simatic Ipc277g Firmware
Siemens Simatic Ipc327g Firmware
Siemens Simatic Ipc377g Firmware
Siemens Simatic Ipc427e Firmware
Siemens Simatic Ipc477e Firmware
Siemens Simatic Ipc627e Firmware
Siemens Simatic Ipc647e Firmware
Siemens Simatic Ipc677e Firmware
Siemens Simatic Ipc847e Firmware
Siemens Simatic Itp1000 Firmware
641
VMScore
CVE-2021-41840
An issue exists in NvmExpressDxe in the kernel 5.0 up to and including 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an malicious user to access the System Management Mode and execute arbitrary code. This occurs because of Inclusion of Functionality from an Untrust...
Insyde Insydeh2o
641
VMScore
CVE-2021-42059
An issue exists in Insyde InsydeH2O Kernel 5.0 prior to 05.08.41, Kernel 5.1 prior to 05.16.41, Kernel 5.2 prior to 05.26.41, Kernel 5.3 prior to 05.35.41, and Kernel 5.4 prior to 05.42.20. A stack-based buffer overflow leads toarbitrary code execution in UEFI DisplayTypeDxe DXE ...
Insyde Insydeh2o
Siemens Simatic Field Pg M5 Firmware
Siemens Simatic Field Pg M6 Firmware
Siemens Simatic Ipc127e Firmware
Siemens Simatic Ipc227g Firmware
Siemens Simatic Ipc277g Firmware
Siemens Simatic Ipc327g Firmware
Siemens Simatic Ipc377g Firmware
Siemens Simatic Ipc427e Firmware
Siemens Simatic Ipc477e Firmware
Siemens Simatic Ipc627e Firmware
Siemens Simatic Ipc647e Firmware
Siemens Simatic Ipc677e Firmware
Siemens Simatic Ipc847e Firmware
Siemens Simatic Itp1000 Firmware
641
VMScore
CVE-2021-41837
An issue exists in AhciBusDxe in the kernel 5.0 up to and including 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to esc...
Insyde Insydeh2o
Siemens Simatic Field Pg M5 Firmware
Siemens Simatic Field Pg M6 Firmware
Siemens Simatic Ipc127e Firmware
Siemens Simatic Ipc227g Firmware
Siemens Simatic Ipc277g Firmware
Siemens Simatic Ipc327g Firmware
Siemens Simatic Ipc377g Firmware
Siemens Simatic Ipc427e Firmware
Siemens Simatic Ipc477e Firmware
Siemens Simatic Ipc627e Firmware
Siemens Simatic Ipc647e Firmware
Siemens Simatic Ipc677e Firmware
Siemens Simatic Ipc847e Firmware
Siemens Simatic Itp1000 Firmware
409
VMScore
CVE-2021-41839
An issue exists in NvmExpressDxe in the kernel 5.0 up to and including 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to ...
Insyde Insydeh2o
641
VMScore
CVE-2021-41841
An issue exists in AhciBusDxe in the kernel 5.0 up to and including 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an malicious user to access the System Management Mode and execute arbitrary code. This occurs because of Inclusion of Functionality from an Untrusted ...
Insyde Insydeh2o
641
VMScore
CVE-2021-42060
An issue exists in Insyde InsydeH2O Kernel 5.0 up to and including 05.08.41, Kernel 5.1 up to and including 05.16.41, Kernel 5.2 prior to 05.23.22, and Kernel 5.3 prior to 05.32.22. An Int15ServiceSmm SMM callout vulnerability allows an malicious user to hijack execution flow of ...
Insyde Insydeh2o
409
VMScore
CVE-2021-42113
An issue exists in StorageSecurityCommandDxe in Insyde InsydeH2O with Kernel 5.1 prior to 05.14.28, Kernel 5.2 prior to 05.24.28, and Kernel 5.3 prior to 05.32.25. An SMM callout vulnerability allows an malicious user to hijack execution flow of code running in System Management ...
Insyde Insydeh2o
641
VMScore
CVE-2021-42554
An issue exists in Insyde InsydeH2O with Kernel 5.0 prior to 05.08.42, Kernel 5.1 prior to 05.16.42, Kernel 5.2 prior to 05.26.42, Kernel 5.3 prior to 05.35.42, Kernel 5.4 prior to 05.42.51, and Kernel 5.5 prior to 05.50.51. An SMM memory corruption vulnerability in FvbServicesRu...
Insyde Insydeh2o
Siemens Simatic Field Pg M5 Firmware
Siemens Simatic Field Pg M6 Firmware
Siemens Simatic Ipc127e Firmware
Siemens Simatic Ipc227g Firmware
Siemens Simatic Ipc277g Firmware
Siemens Simatic Ipc327g Firmware
Siemens Simatic Ipc377g Firmware
Siemens Simatic Ipc427e Firmware
Siemens Simatic Ipc477e Firmware
Siemens Simatic Ipc627e Firmware
Siemens Simatic Ipc647e Firmware
Siemens Simatic Ipc677e Firmware
Siemens Simatic Ipc847e Firmware
Siemens Simatic Itp1000 Firmware
Siemens Ruggedcom Ape1808 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »