説明
An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insufficient input validation, an attacker can corrupt SMRAM.
AI分析AIによる分析
影響を受ける製品
insydeinsydeh2o
参照
- https://research.nccgroup.com/2023/04/11/stepping-insyde-system-management-mode/ExploitThird Party Advisory
- https://www.insyde.com/security-pledgeVendor Advisory
- https://www.insyde.com/security-pledge/SA-2023022Vendor Advisory
- https://research.nccgroup.com/2023/04/11/stepping-insyde-system-management-mode/ExploitThird Party Advisory
- https://www.insyde.com/security-pledgeVendor Advisory
- https://www.insyde.com/security-pledge/SA-2023022Vendor Advisory