Vulnerabilities > Siemens > Simatic Itp1000 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-02-03 CVE-2021-33625 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword.
local
high complexity
insyde netapp siemens CWE-119
7.5
2022-02-03 CVE-2021-33627 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.09.11, 5.1 before 05.17.11, 5.2 before 05.27.11, 5.3 before 05.36.11, 5.4 before 05.44.11, and 5.5 before 05.52.11 affecting FwBlockServiceSmm.
local
low complexity
insyde siemens CWE-119
8.2
2022-02-03 CVE-2021-41837 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O.
local
low complexity
insyde siemens CWE-119
8.2
2022-02-03 CVE-2021-41838 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in SdHostDriver in the kernel 5.0 through 5.5 in Insyde InsydeH2O.
local
low complexity
insyde siemens CWE-119
8.2
2022-02-03 CVE-2021-42554 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.42, Kernel 5.3 before 05.35.42, Kernel 5.4 before 05.42.51, and Kernel 5.5 before 05.50.51.
local
low complexity
insyde siemens CWE-787
8.2
2022-02-03 CVE-2020-5953 A vulnerability exists in System Management Interrupt (SWSMI) handler of InsydeH2O UEFI Firmware code located in SWSMI handler that dereferences gRT (EFI_RUNTIME_SERVICES) pointer to call a GetVariable service, which is located outside of SMRAM.
local
high complexity
insyde siemens
7.5
2021-10-01 CVE-2021-33626 Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products
A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer(QWORD values for CommBuffer).
local
low complexity
insyde siemens CWE-829
7.8
2017-11-21 CVE-2017-5712 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.
network
low complexity
intel asus siemens CWE-119
7.2
2017-11-21 CVE-2017-5711 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.
local
low complexity
intel asus siemens CWE-119
7.8