Unrated severityNVD Advisory· Published Nov 14, 2022· Updated Apr 30, 2025
CVE-2022-31243
CVE-2022-31243
Description
Update description and links DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption through a TOCTOU attack.. "DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption. This issue was discovered by Insyde engineering based on the general description provided by Intel's iSTARE group. Fixed in Kernel 5.2: 05.27.21. Kernel 5.3: 05.36.21. Kernel 5.4: 05.44.21. Kernel 5.5: 05.52.21 https://www.insyde.com/security-pledge/SA-2022044
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Insyde/FvbServicesRuntimeDxedescription
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.