CVE-2022-32475
Last modified
CVE-2022-32475 is a high-severity vulnerability rated 7/10 on the CVSS scale. An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the VariableRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. EPSS estimates a 0.13% chance of exploitation in the next 30 days.
Description
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. DMA attacks on the VariableRuntimeDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that could lead to corruption of SMRAM and escalation of privileges. This issue was fixed in the kernel, which also protected chipset and OEM chipset code.
Metrics
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Insyde | Insydeh2o | >= 5.0, < 5.2.05.27.27 |
| Insyde | Insydeh2o | >= 5.3, < 5.3.05.36.27 |
| Insyde | Insydeh2o | >= 5.4, < 5.4.05.44.27 |
| Insyde | Insydeh2o | >= 5.5, < 5.5.05.52.27 |
References
- https://www.insyde.com/security-pledgeVendor Advisory
- https://www.insyde.com/security-pledge/SA-2023007Vendor Advisory
- https://www.insyde.com/security-pledgeVendor Advisory
- https://www.insyde.com/security-pledge/SA-2023007Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-32475?
How severe is CVE-2022-32475?
How do I fix CVE-2022-32475?
Are you affected by CVE-2022-32475?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST