An issue exists in Insyde InsydeH2O with Kernel 5.0 prior to 05.08.42, Kernel 5.1 prior to 05.16.42, Kernel 5.2 prior to 05.26.42, Kernel 5.3 prior to 05.35.42, Kernel 5.4 prior to 05.42.51, and Kernel 5.5 prior to 05.50.51. An SMM memory corruption vulnerability in FvbServicesRuntimeDxe allows a possible malicious user to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
insyde insydeh2o |
||
siemens simatic field pg m5 firmware |
||
siemens simatic field pg m6 firmware |
||
siemens simatic ipc127e firmware |
||
siemens simatic ipc227g firmware |
||
siemens simatic ipc277g firmware |
||
siemens simatic ipc327g firmware |
||
siemens simatic ipc377g firmware |
||
siemens simatic ipc427e firmware |
||
siemens simatic ipc477e firmware |
||
siemens simatic ipc627e firmware |
||
siemens simatic ipc647e firmware |
||
siemens simatic ipc677e firmware |
||
siemens simatic ipc847e firmware |
||
siemens simatic itp1000 firmware |
||
siemens ruggedcom ape1808 firmware |
Vulmon