← Back

Ruggedcom Apr1808 Firmware

ruggedcom_apr1808_firmware

Vendor: Siemens • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-33626
2Insyde
Siemens
17Insydeh2o
Ruggedcom Apr1808 FirmwareSimatic Field Pg M5 Firmware+14 more
Nov 4, 2025
Oct 1, 2021
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer(QWORD values for CommBuffer). This can be used by an...Show more
A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer(QWORD values for CommBuffer). This can be used by an attacker to corrupt data in SMRAM memory and even lead to arbitrary code execution.Show less
CVE-2020-27339
2Insyde
Siemens
17Insydeh2o
Ruggedcom Apr1808 FirmwareSimatic Field Pg M5 Firmware+14 more
Nov 4, 2025
Jun 16, 2021
N/A· v4
6.7 MEDIUM· v3
7.2 HIGH· v2
In the kernel in Insyde InsydeH2O 5.x, certain SMM drivers did not correctly validate the CommBuffer and CommBufferSize parameters, allowing callers to corrupt either the firmware or the OS memory. The fixed versions for...Show more
In the kernel in Insyde InsydeH2O 5.x, certain SMM drivers did not correctly validate the CommBuffer and CommBufferSize parameters, allowing callers to corrupt either the firmware or the OS memory. The fixed versions for this issue in the AhciBusDxe, IdeBusDxe, NvmExpressDxe, SdHostDriverDxe, and SdMmcDeviceDxe drivers are 05.16.25, 05.26.25, 05.35.25, 05.43.25, and 05.51.25 (for Kernel 5.1 through 5.5).Show less