CVE-2022-29279

Published: Nov 15, 2022Modified: Apr 30, 2025

8.2

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Exploitability: 1.5 / Impact: 6.0

Source: NVD

Description

Use of a untrusted pointer allows tampering with SMRAM and OS memory in SdHostDriver and SdMmcDevice Use of a untrusted pointer allows tampering with SMRAM and OS memory in SdHostDriver and SdMmcDevice. This issue was discovered by Insyde during security review. It was fixed in: Kernel 5.0: version 05.09.17 Kernel 5.1: version 05.17.17 Kernel 5.2: version 05.27.17 Kernel 5.3: version 05.36.17 Kernel 5.4: version 05.44.17 Kernel 5.5: version 05.52.17 https://www.insyde.com/security-pledge/SA-2022062

Affected (6)

Products: Insyde: Kernel

Insyde

1 product

Kernel

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Insyde Kernel	From 5.0 to 5.0.05.09.17
Insyde Kernel	From 5.1 to 5.1.05.17.17
Insyde Kernel	From 5.2 to 5.2.05.27.17
Insyde Kernel	From 5.3 to 5.3.05.36.17
Insyde Kernel	From 5.4 to 5.4.05.44.17
Insyde Kernel	From 5.5 to 5.5.05.52.17