Insyde's Security Pledge
Insyde Security Advisory 2022059
| Insyde ID | Advisory Category | Impact of Vulnerability | Severity Rating | Original Date | Last Revised |
| INSYDE-SA-2022059 | Software | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H | 8.2 | 11/14/2022 | 11/14/2022 |
Summary:
SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM.
Vulnerability Details
SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM. This issue was discovered by Insyde during security review. It was fixed in:
Kernel 5.0: version 05.09.18
Kernel 5.1: version 05.17.18
Kernel 5.2: version 05.27.18
Kernel 5.3: version 05.36.18
Kernel 5.4: version 05.44.18
Kernel 5.5: version 05.52.18
Revision History:
| Revision | Date | Description |
| 1.0 | 11/14/2022 | Initial Release |
| - | - | - |