kernel - CVE CyberSecurity Database News (Page 5)

Nov 23, 2022 Exploit Insyde kernel

CVE-2022-36337 - Insyde InsydeH2O Kernel 5. to 5.5 Stack Buffer Overflow Vulnerability in MebxConfiguration Driver

A newly discovered vulnerability dubbed CVE-2022-36337 is found to affect Insyde InsydeH2O Kernel versions 5. through 5.5. The vulnerability exists due to a stack

Nov 22, 2022 Exploit Insyde kernel

CVE-2022-35407 - Buffer Overflow in Insyde InsydeH2O Kernel 5. - 5.5 Leading to Arbitrary Code Execution

A recently discovered vulnerability, tracked as CVE-2022-35407, affects InsydeH2O, a popular firmware/BIOS provider for various Intel systems. The vulnerability exists in the SetupUtility driver,

Nov 21, 2022 Exploit Insyde kernel

CVE-2022-35897 - Stack Buffer Overflow Vulnerability in Insyde InsydeH2O Leads to Arbitrary Code Execution

A newly discovered security vulnerability tagged as CVE-2022-35897 affects Insyde InsydeH2O firmware, specifically on versions with kernel 5. through 5.5. This critical vulnerability involves

Nov 15, 2022 Exploit Insyde kernel

CVE-2022-29278: Compromising System Security Through Incorrect Pointer Checks in NvmExpressDxe Driver

Following the recent discovery by Insyde, a critical security vulnerability identified as CVE-2022-29278 has been found in the NvmExpressDxe driver when it comes to improper

Nov 15, 2022 Exploit Insyde kernel

CVE-2022-29279: Use of Untrusted Pointer Compromises SMRAM and OS Memory in SdHostDriver and SdMmcDevice

A critical security vulnerability (CVE-2022-29279) has been identified in the SdHostDriver and SdMmcDevice that stems from the use of an untrusted pointer. This flaw exposes