SB2023091908 - Multiple vulnerabilities in Insyde Kernel
Published: September 19, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Memory leak (CVE-ID: CVE-2022-35894)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due memory leak in SMM driver (SMRAM read) in InsydeH2O. A local administrator can force the application to leak memory and gain access to sensitive information on the target system.
2) Memory leak (CVE-ID: CVE-2022-35896)
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due memory leak in SMM driver (SMRAM read) in InsydeH2O. A local administrator can force the application to leak memory and gain access to sensitive information on the target system.
3) Out-of-bounds write (CVE-ID: CVE-2022-35895)
The vulnerability allows a local user to compromise vulnerable system.
The vulnerability exists due to a boundary error when processing untrusted input in SMM driver (SMRAM write) in InsydeH2O. A local administrator can trigger an out-of-bounds write and execute arbitrary code on the target system.
Remediation
Install update from vendor's website.
References
- https://www.insyde.com/security-pledge
- https://www.insyde.com/security-pledge/SA-2022030
- https://binarly.io/advisories/BRLY-2022-018/index.html
- https://www.insyde.com/security-pledge/SA-2022034
- https://binarly.io/advisories/BRLY-2022-025/index.html
- https://binarly.io/advisories/BRLY-2022-024/index.html
- https://www.insyde.com/security-pledge/SA-2022033