CVE-2021-33627

An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.09.11, 5.1 before 05.17.11, 5.2 before 05.27.11, 5.3 before 05.36.11, 5.4 before 05.44.11, and 5.5 before 05.52.11 affecting FwBlockServiceSmm. Software SMI services that use the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL do not check whether the address of the buffer is valid, which allows use of SMRAM, MMIO, or OS kernel addresses.

Published: Feb 3, 2022
Updated: Jul 23, 2024
CVE: CVE-2021-33627
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.2
AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
insyde / insydeh2o	5.0	5.08.29
insyde / insydeh2o	5.1	5.16.29
insyde / insydeh2o	5.2	5.26.29
insyde / insydeh2o	5.3	5.35.29
siemens / simatic_field_pg_m5_firmware	-	-
siemens / simatic_field_pg_m6_firmware	-	-
siemens / simatic_ipc127e_firmware	-	-
siemens / simatic_ipc227g_firmware	-	-
siemens / simatic_ipc277g_firmware	-	-
siemens / simatic_ipc327g_firmware	-	-
siemens / simatic_ipc377g_firmware	-	-
siemens / simatic_ipc427e_firmware	-	-
siemens / simatic_ipc477e_firmware	-	-
siemens / simatic_ipc627e_firmware	-	-
siemens / simatic_ipc647e_firmware	-	-
siemens / simatic_ipc677e_firmware	-	-
siemens / simatic_ipc847e_firmware	-	-
siemens / simatic_itp1000_firmware	-	-

Vulnerability Database

289,599

CVE-2021-33627