Vulnerabilities > Insyde > High

DATE CVE VULNERABILITY TITLE RISK
2022-02-03 CVE-2021-33627 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.09.11, 5.1 before 05.17.11, 5.2 before 05.27.11, 5.3 before 05.36.11, 5.4 before 05.44.11, and 5.5 before 05.52.11 affecting FwBlockServiceSmm.
local
low complexity
insyde siemens CWE-119
8.2
8.2
2022-02-03 CVE-2021-41837 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O.
local
low complexity
insyde siemens CWE-119
7.2
7.2
2022-02-03 CVE-2021-41838 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in SdHostDriver in the kernel 5.0 through 5.5 in Insyde InsydeH2O.
local
low complexity
insyde siemens CWE-119
7.2
7.2
2022-02-03 CVE-2021-41839 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Insyde Insydeh2O
An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O.
local
low complexity
insyde CWE-119
8.2
8.2
2022-02-03 CVE-2021-41840 Allocation of Resources Without Limits or Throttling vulnerability in Insyde Insydeh2O
An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O.
local
low complexity
insyde CWE-770
7.2
7.2
2022-02-03 CVE-2021-41841 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Insyde Insydeh2O
An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O.
local
low complexity
insyde CWE-829
7.2
7.2
2022-02-03 CVE-2021-42059 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.08.41, Kernel 5.1 before 05.16.41, Kernel 5.2 before 05.26.41, Kernel 5.3 before 05.35.41, and Kernel 5.4 before 05.42.20.
local
low complexity
insyde siemens CWE-787
7.2
7.2
2022-02-03 CVE-2021-42060 Unspecified vulnerability in Insyde Insydeh2O
An issue was discovered in Insyde InsydeH2O Kernel 5.0 through 05.08.41, Kernel 5.1 through 05.16.41, Kernel 5.2 before 05.23.22, and Kernel 5.3 before 05.32.22.
local
low complexity
insyde
7.2
7.2
2022-02-03 CVE-2021-42554 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.42, Kernel 5.3 before 05.35.42, Kernel 5.4 before 05.42.51, and Kernel 5.5 before 05.50.51.
local
low complexity
insyde siemens CWE-787
7.2
7.2
2022-02-03 CVE-2021-43323 Unspecified vulnerability in Insyde Insydeh2O
An issue was discovered in UsbCoreDxe in Insyde InsydeH2O with kernel 5.5 before 05.51.45, 5.4 before 05.43.45, 5.3 before 05.35.45, 5.2 before 05.26.45, 5.1 before 05.16.45, and 5.0 before 05.08.45.
local
low complexity
insyde
7.2
7.2