An issue was discovered in IdeBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2 before 05.26.25, 5.3 before 05.35.25, 5.4 before 05.43.25, and 5.5 before 05.51.25. A vulnerability exists in the SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer (the status code saved at the CommBuffer+4 location).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-01-05T22:59:10

Updated: 2024-08-04T04:54:31.136Z

Reserved: 2022-01-01T00:00:00

Link: CVE-2021-45970

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-01-05T23:15:08.887

Modified: 2024-11-21T06:33:24.097

Link: CVE-2021-45970

cve-icon Redhat

No data.