Lucene search
PRIOn knowledge basePRION:CVE-2022-29275HistoryNov 15, 2022 - 9:15 p.m.
Input validation
2022-11-1521:15:00
PRIOn knowledge base
www.prio-n.com
3
usbcoredxe
untrusted input
memory tampering
privilege escalation
insyde
kernels 5.0-5.5
In UsbCoreDxe, untrusted input may allow SMRAM or OS memory tampering Use of untrusted pointers could allow OS or SMRAM memory tampering leading to escalation of privileges. This issue was discovered by Insyde during security review. It was fixed in: Kernel 5.0: version 05.09.21 Kernel 5.1: version 05.17.21 Kernel 5.2: version 05.27.21 Kernel 5.3: version 05.36.21 Kernel 5.4: version 05.44.21 Kernel 5.5: version 05.52.21 https://www.insyde.com/security-pledge/SA-2022058
| CPE | Name | Operator | Version |
|---|---|---|---|
| kernel | ge | 5.0 | |
| kernel | le | 5.0.05.09.21 | |
| kernel | ge | 5.1 | |
| kernel | lt | 5.1.05.17.21 | |
| kernel | ge | 5.2 | |
| kernel | lt | 5.2.05.27.21 | |
| kernel | ge | 5.3 | |
| kernel | lt | 5.3.05.36.21 | |
| kernel | ge | 5.4 | |
| kernel | lt | 5.4.05.44.21 |
Related
cve
cve
CVE-2022-29275
2022-11-15 21:15:36
cvelist
cvelist
CVE-2022-29275
2022-11-15 00:00:00
nvd
nvd
CVE-2022-29275
2022-11-15 21:15:36
ics
ics
Siemens RUGGEDCOM APE1808 Product Family
2023-09-14 12:00:00