CVE-2023-27471

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. UEFI implementations do not correctly protect and validate information contained in the 'MeSetup' UEFI variable. On some systems, this variable can be overwritten using operating system APIs. Exploitation of this vulnerability could potentially lead to denial of service for the platform.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.insyde.com/security-pledge/SA-2023036	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:insyde:insydeh2o:5.0:::::::*
	cpe:2.3:a:insyde:insydeh2o:5.1:::::::*
	cpe:2.3:a:insyde:insydeh2o:5.2:::::::*
	cpe:2.3:a:insyde:insydeh2o:5.3:::::::*
	cpe:2.3:a:insyde:insydeh2o:5.4:::::::*
	cpe:2.3:a:insyde:insydeh2o:5.5:::::::*

History

24 Aug 2023, 16:14

Type	Values Removed	Values Added
CWE		NVD-CWE-noinfo
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
First Time		Insyde insydeh2o Insyde
CPE		cpe:2.3:a:insyde:insydeh2o:5.5:::::::* cpe:2.3:a:insyde:insydeh2o:5.0:::::::* cpe:2.3:a:insyde:insydeh2o:5.2:::::::* cpe:2.3:a:insyde:insydeh2o:5.3:::::::* cpe:2.3:a:insyde:insydeh2o:5.1:::::::* cpe:2.3:a:insyde:insydeh2o:5.4:::::::*
References	~~(MISC) https://www.insyde.com/security-pledge/SA-2023036 -~~	(MISC) https://www.insyde.com/security-pledge/SA-2023036 - Vendor Advisory

18 Aug 2023, 20:11

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-08-18 19:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-27471

Mitre link : CVE-2023-27471

CVE.ORG link : CVE-2023-27471

JSON object : View

Products Affected

insyde

insydeh2o

CWE

NVD-CWE-noinfo

{"id": "CVE-2023-27471", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2023-08-18T19:15:12.243", "references": [{"url": "https://www.insyde.com/security-pledge/SA-2023036", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. UEFI implementations do not correctly protect and validate information contained in the 'MeSetup' UEFI variable. On some systems, this variable can be overwritten using operating system APIs. Exploitation of this vulnerability could potentially lead to denial of service for the platform."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en Insyde InsydeH2O con kernel 5.0 a 5.5. Las implementaciones UEFI no protegen ni validan correctamente la informaci\u00f3n contenida en la variable UEFI \"MeSetup\". En algunos sistemas, esta variable puede sobrescribirse utilizando las API del sistema operativo. La explotaci\u00f3n de esta vulnerabilidad podr\u00eda conducir potencialmente a la denegaci\u00f3n de servicio de la plataforma. "}], "lastModified": "2023-08-24T16:14:42.057", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:insyde:insydeh2o:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C50E9CE0-9960-4939-A6C1-E6E69F464456"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F486B49-3E4C-43BD-9165-8D159EBE74F9"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BA6B7DE-2275-41D9-BFD0-066AC3912055"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24E601E3-FCF5-4907-BCB1-E5D331896E40"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88E0151F-0A27-4F69-96B4-A40B00719107"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E87C1381-CDD4-4A1C-AF59-32873BDF2730"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}