CVE-2021-41839 in InsydeH2Oinformation

Résumé (Anglaise)

An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

01/10/2021

Divulgation

03/02/2022

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
192154	InsydeH2O SMM HandleProtocol déni de service	770	Non défini	Correctif officiel	CVE-2021-41839

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Want to know what is going to be exploited?

We predict KEV entries!