Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
insyde kernel 5.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-32474
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. DMA attacks on the StorageSecurityCommandDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This ...
Insyde Insydeh2o
NA
CVE-2022-32476
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. DMA attacks on the AhciBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be m...
Insyde Insydeh2o
NA
CVE-2022-32477
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. DMA attacks on the FvbServicesRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This atta...
Insyde Insydeh2o
NA
CVE-2022-32478
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. DMA attacks on the IdeBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mi...
Insyde Insydeh2o
7.2
CVSSv2
CVE-2021-43323
An issue exists in UsbCoreDxe in Insyde InsydeH2O with kernel 5.5 prior to 05.51.45, 5.4 prior to 05.43.45, 5.3 prior to 05.35.45, 5.2 prior to 05.26.45, 5.1 prior to 05.16.45, and 5.0 prior to 05.08.45. An SMM callout vulnerability allows an malicious user to hijack execution fl...
Insyde Insydeh2o
7.2
CVSSv2
CVE-2022-24069
An issue exists in AhciBusDxe in Insyde InsydeH2O with kernel 5.0 prior to 05.08.41, 5.1 prior to 05.16.29, 5.2 prior to 05.26.29, 5.3 prior to 05.35.29, 5.4 prior to 05.43.29, and 5.5 prior to 05.51.29. An SMM callout vulnerability allows an malicious user to hijack the executio...
Insyde Insydeh2o
NA
CVE-2022-24350
An issue exists in IhisiSmm in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. IHISI function 0x17 verifies that the output buffer lies within the command buffer but does not verify that output data does not go beyond the end of the command buffer. In particular, the Ge...
Insyde Insydeh2o
NA
CVE-2023-34195
An issue exists in SystemFirmwareManagementRuntimeDxe in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. The implementation of the GetImage method retrieves the value of a runtime variable named GetImageProgress, and later uses this value as a function pointer. This var...
Insyde Insydeh2o
NA
CVE-2022-32953
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. DMA attacks on the SdHostDriver buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitiga...
Insyde Insydeh2o
NA
CVE-2022-32955
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. DMA attacks on the NvmExpressDxe buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This attack can be mitig...
Insyde Insydeh2o
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »