Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Fri, 15 Aug 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:* |
Mon, 19 May 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-126 | |
Metrics |
cvssV3_1
|
Thu, 15 May 2025 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, SmmUpdateVariablePropertySmi () is a SMM callback function and it uses StrCmp () to compare variable names. This action may cause a buffer over-read. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-05-19T20:04:06.695Z
Reserved: 2024-11-17T00:00:00.000Z
Link: CVE-2024-52879

Updated: 2025-05-19T20:03:57.978Z

Status : Analyzed
Published: 2025-05-15T16:15:33.013
Modified: 2025-08-15T17:04:35.663
Link: CVE-2024-52879

No data.

Updated: 2025-07-12T22:32:02Z