Insydeh20
By the Year
In 2024 there have been 0 vulnerabilities in Insydeh20 . Last year Insydeh20 had 4 security vulnerabilities published. Right now, Insydeh20 is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 4 | 8.70 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Insydeh20 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Insydeh20 Security Vulnerabilities
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5
CVE-2023-22613
8.8 - High
- April 11, 2023
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in SMM memory corruption.
Memory Corruption
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5
CVE-2023-22615
8.4 - High
- April 11, 2023
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. IHISI subfunction execution may corrupt SMRAM. An attacker can pass an address in the RCX save state register that overlaps SMRAM, thereby coercing an IHISI subfunction handler to overwrite private SMRAM.
Memory Corruption
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5
CVE-2023-22612
8.8 - High
- April 11, 2023
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. A malicious host OS can invoke an Insyde SMI handler with malformed arguments, resulting in memory corruption in SMM.
Memory Corruption
An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5
CVE-2023-22614
8.8 - High
- April 11, 2023
An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There is insufficient input validation in BIOS Guard updates. An attacker can induce memory corruption in SMM by supplying malformed inputs to the BIOS Guard SMI handler.
Memory Corruption
