Vulnerabilities > Insyde > Kernel > 5.3

DATE CVE VULNERABILITY TITLE RISK
2022-11-15 CVE-2022-30772 Out-of-bounds Write vulnerability in Insyde Kernel
Manipulation of the input address in PnpSmm function 0x52 could be used by malware to overwrite SMRAM or OS kernel memory.
local
low complexity
insyde CWE-787
8.2
8.2
2022-03-03 CVE-2021-38578 Out-of-bounds Write vulnerability in multiple products
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
network
low complexity
tianocore insyde CWE-787
critical
 9.8
9.8
2021-12-01 CVE-2021-38575 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
network
high complexity
tianocore insyde CWE-119
8.1
8.1