Lucene search
MitreCVELIST:CVE-2020-27339HistoryJun 16, 2021 - 3:49 p.m.
CVE-2020-27339
2021-06-1615:49:34
mitre
www.cve.org
1
In the kernel in Insyde InsydeH2O 5.x, certain SMM drivers did not correctly validate the CommBuffer and CommBufferSize parameters, allowing callers to corrupt either the firmware or the OS memory. The fixed versions for this issue in the AhciBusDxe, IdeBusDxe, NvmExpressDxe, SdHostDriverDxe, and SdMmcDeviceDxe drivers are 05.16.25, 05.26.25, 05.35.25, 05.43.25, and 05.51.25 (for Kernel 5.1 through 5.5).
Related
cnvd
cnvd
Insyde InsydeH2O has an unspecified vulnerability (CNVD-2022-10035)
2021-07-06 00:00:00
nvd
nvd
CVE-2020-27339
2021-06-16 16:15:07
CVE-2021-41610
2022-01-04 20:15:07
nessus
nessus
Siemens InsydeH2O Improper Input Validation (CVE-2020-27339)
2023-09-26 00:00:00
prion
prion
Code injection
2021-06-16 16:15:00
cve
cve
CVE-2020-27339
2021-06-16 16:15:07
CVE-2021-41610
2022-01-04 20:15:07
f5
f5
K45810018 : Multiple Insyde BIOS/EFI vulnerabilities
2022-02-15 00:00:00
cert
cert
InsydeH2O UEFI software impacted by multiple vulnerabilities in SMM
2022-02-01 00:00:00