A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09, kernel 5.3 before 05.38.09, kernel 5.4 before 05.46.09, kernel 5.5 before 05.54.09, and kernel 5.6 before 05.61.09 could lead to escalating privileges in SMM.
History

Tue, 29 Oct 2024 16:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-822

Tue, 29 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Insyde
Insyde insydeh2o
Weaknesses CWE-763
CPEs cpe:2.3:a:insyde:insydeh2o:5.2:*:*:*:*:*:*:*
cpe:2.3:a:insyde:insydeh2o:5.3:*:*:*:*:*:*:*
cpe:2.3:a:insyde:insydeh2o:5.4:*:*:*:*:*:*:*
cpe:2.3:a:insyde:insydeh2o:5.5:*:*:*:*:*:*:*
cpe:2.3:a:insyde:insydeh2o:5.6:*:*:*:*:*:*:*
Vendors & Products Insyde
Insyde insydeh2o
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-10-29T14:17:02.723Z

Reserved:

Link: CVE-2024-25079

cve-icon Vulnrichment

Updated: 2024-08-01T23:36:21.602Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-15T15:15:07.930

Modified: 2024-10-29T15:35:19.873

Link: CVE-2024-25079

cve-icon Redhat

No data.