Insyde Kernel 5.7
Approved changes feed: RSS · Atom
cpe:2.3:o:insyde:kernel:5.7:*:*:*:*:*:*:*
part: o version: 5.7 update: *
| Vendor | Insyde (9c0ef15d-4d71-5574-a128-355141b768e0) |
|---|---|
| Product | Kernel (db8f1dfe-f2d8-57db-8a54-5699721ffc01) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-49200 |
vulnerable | 2026-06-03 14:57:11.806528 |
Details available
An issue was discovered in AcpiS3SaveDxe and ChipsetSvcDxe in Insyde InsydeH2O with kernel 5.2 though 5.7. A potential DXE memory corruption vulnerability has been identified. The root cause is use of a pointer originating from the value of an NVRAM variable as the target of a write operation. This can be leveraged by an attacker to perform arbitrary writes, potentially leading to arbitrary code execution. The issue has been fixed in kernel 5.2, Version 05.29.44; kernel 5.3, Version 05.38.44; kernel 5.4, Version 05.46.44; kernel 5.5, Version 05.54.44; kernel 5.6, Version 05.61.44; and kernel 5.7, Version 05.70.44.
Published: 2025-04-15T00:00:00.000Z
Updated: 2025-04-16T18:30:42.300Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.