CVE-2022-35407 - Buffer Overflow in Insyde InsydeH2O Kernel 5. - 5.5 Leading to Arbitrary Code Execution
A recently discovered vulnerability, tracked as CVE-2022-35407, affects InsydeH2O, a popular firmware/BIOS provider for various Intel systems. The vulnerability exists in the SetupUtility driver,
CVE-2022-29278: Compromising System Security Through Incorrect Pointer Checks in NvmExpressDxe Driver
Following the recent discovery by Insyde, a critical security vulnerability identified as CVE-2022-29278 has been found in the NvmExpressDxe driver when it comes to improper
CVE-2022-30772: Potential SMRAM and OS Kernel Memory Overwrite Exploit through Manipulation of Input Address in PnpSmm Function x52
A potential vulnerability, identified under the reference CVE-2022-30772, may lead to the manipulation of the input address in the PnpSmm function x52. This issue arises
CVE-2022-32266: DMA Attacks on Parameter Buffer Used by Software SMI Handler (PcdSmmDxe Driver)
A newly discovered vulnerability dubbed as CVE-2022-32266 has been found in Insyde InsydeH2O with kernel versions 5. through 5.5, which can potentially lead to
Episode
00:00:00
00:00:00