Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
insyde insydeh2o 5.5 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-35407
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. A stack buffer overflow leads to arbitrary code execution in the SetupUtility driver on Intel platforms. An attacker can change the values of certain UEFI variables. If the size of the second variable ex...
Insyde Kernel
6.5
CVSSv3
CVE-2023-28468
An issue exists in FvbServicesRuntimeDxe in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. The FvbServicesRuntimeDxe SMM module exposes an SMI handler that allows an malicious user to interact with the SPI flash at run-time from the OS.
Insyde Kernel
8.2
CVSSv3
CVE-2022-36337
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. A stack buffer overflow vulnerability in the MebxConfiguration driver leads to arbitrary code execution. Control of a UEFI variable under the OS can cause this overflow when read by BIOS code.
Insyde Kernel
6.7
CVSSv3
CVE-2020-27339
In the kernel in Insyde InsydeH2O 5.x, certain SMM drivers did not correctly validate the CommBuffer and CommBufferSize parameters, allowing callers to corrupt either the firmware or the OS memory. The fixed versions for this issue in the AhciBusDxe, IdeBusDxe, NvmExpressDxe, SdH...
Insyde Insydeh2o
Siemens Ruggedcom Apr1808 Firmware -
Siemens Simatic Field Pg M5 Firmware -
Siemens Simatic Field Pg M6 Firmware -
Siemens Simatic Ipc127e Firmware -
Siemens Simatic Ipc227g Firmware -
Siemens Simatic Ipc277g Firmware -
Siemens Simatic Ipc327g Firmware -
Siemens Simatic Ipc377g Firmware -
Siemens Simatic Ipc427e Firmware -
Siemens Simatic Ipc477e Firmware -
Siemens Simatic Ipc477e Pro Firmware -
Siemens Simatic Ipc627e Firmware -
Siemens Simatic Ipc647e Firmware -
Siemens Simatic Ipc677e Firmware -
Siemens Simatic Ipc847e Firmware -
Siemens Simatic Itp1000 Firmware -
6.8
CVSSv3
CVE-2022-35897
An stack buffer overflow vulnerability leads to arbitrary code execution issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. If the attacker modifies specific UEFI variables, it can cause a stack overflow, leading to arbitrary code execution. The specific va...
Insyde Kernel
6.4
CVSSv3
CVE-2022-32266
DMA attacks on the parameter buffer used by a software SMI handler used by the driver PcdSmmDxe could lead to a TOCTOU attack on the SMI handler and lead to corruption of other ACPI fields and adjacent memory fields. DMA attacks on the parameter buffer used by a software SMI hand...
Insyde Kernel
NA
CVE-2022-46897
An issue exists in Insyde InsydeH2O with kernel 5.0 up to and including 5.5. The CapsuleIFWUSmm driver does not check the return value from a method or function. This can prevent it from detecting unexpected states and conditions.
NA
CVE-2024-25079
A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 prior to 05.29.09, kernel 5.3 prior to 05.38.09, kernel 5.4 prior to 05.46.09, kernel 5.5 prior to 05.54.09, and kernel 5.6 prior to 05.61.09 could lead to escalating privileges in SMM.
NA
CVE-2024-27353
A memory corruption vulnerability in SdHost and SdMmcDevice in Insyde InsydeH2O kernel 5.2 prior to 05.29.09, kernel 5.3 prior to 05.38.09, kernel 5.4 prior to 05.46.09, kernel 5.5 prior to 05.54.09, and kernel 5.6 prior to 05.61.09 could lead to escalating privileges in SMM.
NA
CVE-2024-25078
A memory corruption vulnerability in StorageSecurityCommandDxe in Insyde InsydeH2O before kernel 5.2: IB19130163 in 05.29.07, kernel 5.3: IB19130163 in 05.38.07, kernel 5.4: IB19130163 in 05.46.07, kernel 5.5: IB19130163 in 05.54.07, and kernel 5.6: IB19130163 in 05.61.07 could l...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »