Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
insyde kernel 5.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-41842
An issue exists in AtaLegacySmm in the kernel 5.0 prior to 05.08.46, 5.1 prior to 05.16.46, 5.2 prior to 05.26.46, 5.3 prior to 05.35.46, 5.4 prior to 05.43.46, and 5.5 prior to 05.51.45 in Insyde InsydeH2O. Code execution can occur because the SMI handler lacks a CommBuffer chec...
Insyde Insydeh2o
7.8
CVSSv3
CVE-2023-22616
An issue exists in Insyde InsydeH2O with kernel 5.2 up to and including 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM.
Insyde Insydeh2o
5.5
CVSSv3
CVE-2023-40238
A LogoFAIL issue exists in BmpDecoderDxe in Insyde InsydeH2O with kernel 5.2 prior to 05.28.47, 5.3 prior to 05.37.47, 5.4 prior to 05.45.47, 5.5 prior to 05.53.47, and 5.6 prior to 05.60.47 for certain Lenovo devices. Image parsing of crafted BMP logo files can copy data to a sp...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2021-45971
An issue exists in SdHostDriver in Insyde InsydeH2O with kernel 5.1 prior to 05.16.25, 5.2 prior to 05.26.25, 5.3 prior to 05.35.25, 5.4 prior to 05.43.25, and 5.5 prior to 05.51.25. A vulnerability exists in the SMM (System Management Mode) branch that registers a SWSMI handler ...
Insyde Insydeh2o
7.5
CVSSv3
CVE-2021-43522
An issue exists in Insyde InsydeH2O with kernel 5.1 through 2021-11-08, 5.2 through 2021-11-08, and 5.3 through 2021-11-08. A StorageSecurityCommandDxe SMM memory corruption vulnerability allows an malicious user to write fixed or predictable data to SMRAM. Exploiting this issue ...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2021-43615
An issue exists in HddPassword in Insyde InsydeH2O with kernel 5.1 prior to 05.16.23, 5.2 prior to 05.26.23, 5.3 prior to 05.35.23, 5.4 prior to 05.43.22, and 5.5 prior to 05.51.22. An SMM memory corruption vulnerability allows an malicious user to write fixed or predictable data...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2021-45969
An issue exists in AhciBusDxe in Insyde InsydeH2O with kernel 5.1 prior to 05.16.25, 5.2 prior to 05.26.25, 5.3 prior to 05.35.25, 5.4 prior to 05.43.25, and 5.5 prior to 05.51.25. A vulnerability exists in the SMM (System Management Mode) branch that registers a SWSMI handler th...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2021-43323
An issue exists in UsbCoreDxe in Insyde InsydeH2O with kernel 5.5 prior to 05.51.45, 5.4 prior to 05.43.45, 5.3 prior to 05.35.45, 5.2 prior to 05.26.45, 5.1 prior to 05.16.45, and 5.0 prior to 05.08.45. An SMM callout vulnerability allows an malicious user to hijack execution fl...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2021-45970
An issue exists in IdeBusDxe in Insyde InsydeH2O with kernel 5.1 prior to 05.16.25, 5.2 prior to 05.26.25, 5.3 prior to 05.35.25, 5.4 prior to 05.43.25, and 5.5 prior to 05.51.25. A vulnerability exists in the SMM (System Management Mode) branch that registers a SWSMI handler tha...
Insyde Insydeh2o
8.2
CVSSv3
CVE-2022-24069
An issue exists in AhciBusDxe in Insyde InsydeH2O with kernel 5.0 prior to 05.08.41, 5.1 prior to 05.16.29, 5.2 prior to 05.26.29, 5.3 prior to 05.35.29, 5.4 prior to 05.43.29, and 5.5 prior to 05.51.29. An SMM callout vulnerability allows an malicious user to hijack the executio...
Insyde Insydeh2o
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »