Vulnerabilities > CVE-2020-5953

CVSS 7.5 - HIGH

Attack vector

LOCAL

Attack complexity

HIGH

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

high complexity

insyde

siemens

NVD

Published: 2022-02-03

Updated: 2022-04-12

Summary

A vulnerability exists in System Management Interrupt (SWSMI) handler of InsydeH2O UEFI Firmware code located in SWSMI handler that dereferences gRT (EFI_RUNTIME_SERVICES) pointer to call a GetVariable service, which is located outside of SMRAM. This can result in code execution in SMM (escalating privilege from ring 0 to ring -2).

Vulnerable Configurations

Part	Description	Count
Application	Insyde Insyde Insydeh2O 5.34.03.0029 Insyde Insydeh2O 5.23.45.0023 Insyde Insydeh2O 5.23.04.0045 Insyde Insydeh2O 5.42.03.0010 Insyde Insydeh2O 5.33.15.0034 Insyde Insydeh2O 5.12.09.0074	6
OS	Siemens Siemens Ruggedcom Ape1808 Firmware - Siemens Simatic Field PG M6 Firmware - Siemens Simatic Ipc127E Firmware - Siemens Simatic Ipc227G Firmware - Siemens Simatic Ipc277G Firmware - Siemens Simatic Itp1000 Firmware - Siemens Simatic Ipc477E PRO Firmware - Siemens Simatic Ipc627E Firmware - Siemens Simatic Ipc647E Firmware - Siemens Simatic Ipc677E Firmware - Siemens Simatic Ipc847E Firmware - Siemens Simatic Ipc327G Firmware - Siemens Simatic Ipc377G Firmware - Siemens Simatic Ipc427E Firmware - Siemens Simatic Ipc477E Firmware - Siemens Simatic Field PG M5 Firmware -	16
Hardware	Siemens Siemens Ruggedcom Ape1808 - Siemens Simatic Field PG M6 - Siemens Simatic Ipc127E - Siemens Simatic Ipc227G - Siemens Simatic Ipc277G - Siemens Simatic Itp1000 - Siemens Simatic Ipc477E PRO - Siemens Simatic Ipc627E - Siemens Simatic Ipc647E - Siemens Simatic Ipc677E - Siemens Simatic Ipc847E - Siemens Simatic Ipc327G - Siemens Simatic Ipc377G - Siemens Simatic Ipc427E - Siemens Simatic Ipc477E - Siemens Simatic Field PG M5 -	16

Vulnerabilities > CVE-2020-5953 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2020-5953"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2020-5953