Security Advisory

CVE-2023-22614

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-11 00:00:00

Last updated 2025-02-11 20:09:44

Assigner mitre

State PUBLISHED

Description

An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There is insufficient input validation in BIOS Guard updates. An attacker can induce memory corruption in SMM by supplying malformed inputs to the BIOS Guard SMI handler.

← Browse all CVEs View on cve.org ↗