CVE-2021-45970

high

Description

An issue was discovered in IdeBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2 before 05.26.25, 5.3 before 05.35.25, 5.4 before 05.43.25, and 5.5 before 05.51.25. A vulnerability exists in the SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer (the status code saved at the CommBuffer+4 location).

References

https://thehackernews.com/2025/01/palo-alto-firewalls-found-vulnerable-to.html

https://eclypsium.com/blog/pandoras-box-vulns-in-security-appliances/

https://www.insyde.com/security-pledge

https://security.netapp.com/advisory/ntap-20220216-0004/

https://cert-portal.siemens.com/productcert/pdf/ssa-306654.pdf

Details

Source: Mitre, NVD

Published: 2022-01-05

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.2

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Severity: High