Arbitrary code execution vulnerability in Dell InsydeH2O UEFI Firmware - CVE-2021-41839ID: oval:org.secpod.oval:def:77813 | Date: (C)2022-02-18 (M)2023-08-16 |
Class: VULNERABILITY | Family: windows |
A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated table variable EFI_BOOT_SERVICES. This can be used by an attacker to overwrite address location of any of the functions (FreePool,LocateHandleBuffer,HandleProtocol) to the address location of arbitrary code controlled by the attacker. On system call to SWSMI handler, the arbitrary code can be triggered to execute.
Platform: |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2019 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 7 |
Microsoft Windows Server |
Microsoft Windows 11 |
Microsoft Windows Server 2022 |