CVE-2022-29276

Sažetak

SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM. SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM. This issue was discovered by Insyde during security review. It was fixed in: Kernel 5.0: version 05.09.18 Kernel 5.1: version 05.17.18 Kernel 5.2: version 05.27.18 Kernel 5.3: version 05.36.18 Kernel 5.4: version 05.44.18 Kernel 5.5: version 05.52.18 https://www.insyde.com/security-pledge/SA-2022059

Reference

https://www.insyde.com/security-pledge
https://www.insyde.com/security-pledge/SA-2022059
https://www.insyde.com/security-pledge
https://www.insyde.com/security-pledge/SA-2022059

CVSS

Base:	8.2
Impact:	6.0
Exploitability:	1.5

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	HIGH

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Zadnje važnije ažuriranje

30-04-2025 - 15:15

Objavljeno

15-11-2022 - 22:15