VYPR

AhciBusDxe

by Insyde

CVEs (2)

  • CVE-2022-29276HigNov 15, 2022
    risk 0.53cvss 8.2epss 0.00

    SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM. SMI functions in AhciBusDxe use untrusted inputs leading to corruption of SMRAM. This issue was discovered by Insyde during security review. It was fixed in: Kernel 5.0: version 05.09.18 Kernel 5.1:…

  • CVE-2022-33905HigNov 15, 2022
    risk 0.46cvss 7.0epss 0.00

    DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler could cause SMRAM corruption (a TOCTOU attack). DMA transactions which are targeted at input buffers used for the software SMI handler used by the AhciBusDxe driver could cause…