CVE-2021-41837

Name of the Vulnerable Software and Affected Versions Insyde InsydeH2O kernel versions 5.0 through 5.5

Description An issue was discovered in AhciBusDxe due to an Untrusted Pointer Dereference, causing SMM memory corruption. This allows an attacker to write fixed or predictable data to SMRAM, potentially leading to escalating privileges to SMM. The vulnerability exists in the SMM branch that registers a SWSMI handler, where an attacker can use an unsafe pointer to read, write, or manipulate data into SMRAM.

Recommendations For kernel versions 5.0 through 5.5, consider disabling the SWSMI handler as a temporary workaround to minimize the risk of exploitation. Restrict access to the AhciBusDxe module to prevent potential attacks. Avoid using the current ptr pointer in the affected SMM branch until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.