| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, SmmUpdateVariablePropertySmi () is a SMM callback function and it uses StrCmp () to compare variable names. This action may cause a buffer over-read. |
| A vulnerability was found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This issue affects some unknown processing of the component UART Interface. The manipulation leads to improper physical access control. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. |
| Information disclosure while handling T2LM Action Frame in WLAN Host. |
| Transient DOS during hypervisor virtual I/O operation in a virtual machine. |
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. |
| Transient DOS while parsing probe response and assoc response frame. |
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. |
| Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. |
| Transient DOS while parsing WPA IES, when it is passed with length more than expected size. |
| Transient DOS in Audio when invoking callback function of ASM driver. |
| Information disclosure in Audio while accessing AVCS services from ADSP payload. |
| Memory corruption during the image encoding process. |
| Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. |
| Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. |
| Information disclosure in Video while parsing mp2 clip with invalid section length. |
| Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame. |
| Memory corruption during management frame processing due to mismatch in T2LM info element. |
| Information disclosure in IOE Firmware while handling WMI command. |
| Transient DOS while processing received beacon frame. |
| Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests. |
