A vulnerability classified as critical was found in InsydeH2O up to 05.16.24/05.26.24/05.35.24/05.43.24/05.51.24. This vulnerability affects the function IdeBusDxe of the component SWSMI Handler. Upgrading to version 05.16.25, 05.26.25, 05.35.25, 05.43.25 or 05.51.25 eliminates this vulnerability.
InsydeH2O SWSMI IdeBusDxe buffer overflow
- Virtual Patching
- January 6, 2022
- 8:10 am
- Virtual Patching
- January 6, 2022
- 8:10 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2023-2851 : AGT TECH CEPPATRON SQL INJECTION
Description Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in AGT Tech Ceppatron allows Command
CVE-2023-2868 : BARRACUDA EMAIL SECURITY GATEWAY UP TO 9.2.0.006 TAR FILE COMMAND INJECTION
Description A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions
CVE-2023-1424 : MITSUBISHI ELECTRIC MELSEC IQ-F PACKETS BUFFER OVERFLOW
Description Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU