VYPR
Unrated severityNVD Advisory· Published Nov 14, 2022· Updated Apr 30, 2025

CVE-2022-31243

CVE-2022-31243

Description

Update description and links DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption through a TOCTOU attack.. "DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption. This issue was discovered by Insyde engineering based on the general description provided by Intel's iSTARE group. Fixed in Kernel 5.2: 05.27.21. Kernel 5.3: 05.36.21. Kernel 5.4: 05.44.21. Kernel 5.5: 05.52.21 https://www.insyde.com/security-pledge/SA-2022044

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Insyde/FvbServicesRuntimeDxedescription
  • Red Hat/Kernelllm-fuzzy
    Range: Kernel 5.2 < 05.27.21, Kernel 5.3 < 05.36.21, Kernel 5.4 < 05.44.21, Kernel 5.5 < 05.52.21

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.