Security Advisory

CVE-2023-22613

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-11 00:00:00

Last updated 2025-02-11 20:07:03

Assigner mitre

State PUBLISHED

Description

An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in SMM memory corruption.

← Browse all CVEs View on cve.org ↗