Unrated severityNVD Advisory· Published Nov 14, 2022· Updated Apr 30, 2025
CVE-2022-32267
CVE-2022-32267
Description
DMA transactions which are targeted at input buffers used for the SmmResourceCheckDxe software SMI handler cause SMRAM corruption (a TOCTOU attack) DMA transactions which are targeted at input buffers used for the software SMI handler used by the SmmResourceCheckDxe driver could cause SMRAM corruption through a TOCTOU attack... This issue was discovered by Insyde engineering. Fixed in kernel Kernel 5.2: 05.27.23. Kernel 5.3: 05.36.23. Kernel 5.4: 05.44.23. Kernel 5.5: 05.52.23 https://www.insyde.com/security-pledge/SA-2022046
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Insyde/SmmResourceCheckDxedescription
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.