cvedb.io
CVE-2022-30773
MEDIUM · CVSS 6.4
EPSS exploitation probability: 0%
Published 2022-11-14T22:15:13.373 · Last modified 2026-06-17T04:44:16.137

Summary

DMA attacks on the parameter buffer used by the IhisiSmm driver could change the contents after parameter values have been checked but before they are used (a TOCTOU attack). DMA attacks on the parameter buffer used by the IhisiSmm driver could change the contents after parameter values have been checked but before they are used (a TOCTOU attack). This issue was discovered by Insyde engineering. This issue is fixed in Kernel 5.4: 05.44.23 and Kernel 5.5: 05.52.23. CWE-367

Affected products

insyde — kernel

Does this affect you?

Add your gear to cvedb and we'll alert you only when insyde ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.