Insyde Security Advisory 2023034

Insyde ID Advisory Category Impact of Vulnerability Severity Rating Original Date Last Revised
INSYDE-SA-2023034 Software CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:N 6.1 06/13/2023 06/13/2023


Insyde Setup EFI Variable Lock Bypass Vulnerability

Vulnerability Details


An architectural flaw in how the InsydeH2O UEFI code handles configuring UEFI NVRAM variables. It is possible, from a EFI Shell, to edit memory in a fashion which allows a user the ability to arbitrarily modify the Setup NVRAM Variable, which in turns allows an attacker to enable manufacturer features. This is the security boundary which is bypassed in this vulnerability report.

Intel Mobile Platforms:

RPL: Version
ADL-N: Version
ADL: Version
RKL: Version
TGL: Version
JSL: Version Tag

Intel Server/Embedded Platforms

Jacobsville(SNR): Version
ElkhartLake: Version
Alder Lake N: Version


Insyde Software would like to thank Nicholas Starke from HPE for reporting the vulnerability and engaging in the coordinated disclosure.

Revision History:

Revision Date Description
1.0 06/13/2023 Initial Release
-- -- --

Return to Insyde's Security Pledge