Published on: Not Yet Published
Last Modified on: 09/22/2022 07:24:00 PM UTC
The following vulnerability was found:
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. The SMI handler for the FwBlockServiceSmm driver uses an untrusted pointer as the location to copy data to an attacker-specified buffer, leading to information disclosure.
- CVE-2022-35894 has been assigned by [email protected] to track the vulnerability
|Insyde's Security Pledge | Insyde Software|| www.insyde.com |
|[BRLY-2022-018] SMM memory leak vulnerability in SMM driver (SMRAM read).|| binarly.io |
|Insyde Security Advisory 2022030 | Insyde Software|| www.insyde.com |