Vulnerabilities > CVE-2020-5955 - Unspecified vulnerability in Insyde Insydeh2O Uefi Bios

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

insyde

critical

NVD

Published: 2021-11-03

Updated: 2022-07-12

Summary

An issue was discovered in Int15MicrocodeSmm in Insyde InsydeH2O before 2021-10-14 on Intel client chipsets. A caller may be able to escalate privileges.

Vulnerable Configurations

Part	Description	Count
OS	Insyde Insyde Insydeh2O Uefi Bios *	1
Hardware	Intel Intel ICE Lake - Intel Tiger Lake - Intel Whitley SP - Intel Grantley EP - Intel Elkhart Lake - Intel Purley EP Refresh Neon City - Intel Comet Lake RVP - Intel Comet Lake - Intel Whiskey Lake RVP - Intel Whiskey Lake - Intel Mehlow - Intel Mehlow R - Intel Coffee Lake - Intel Cannon Lake - Intel Kaby Lake MRD - Intel Greenlow - Intel Greenlow R - Intel Kaby Lake - Intel Skylake MRD - Intel Skylake -	28

Summary

Vulnerable Configurations

References