CVE-2021-41838

Name of the Vulnerable Software and Affected Versions InsydeH2O kernel versions 5.0 through 5.5

Description The issue allows an attacker to access the System Management Mode and execute arbitrary code due to a Numeric Range Comparison Without a Minimum Check in the SdHostDriver. This vulnerability can lead to escalation of privileges reserved only for SMM. An unsafe pointer ptr in the SMM branch that registers a SWSMI handler can be used to read, write, or manipulate data in the SMRAM.

Recommendations For kernel versions 5.0 through 5.5, consider disabling the SMM callout in the SdHostDriver as a temporary workaround until a patch is available. Restrict access to the SWSMI handler to minimize the risk of exploitation. Avoid using the ptr pointer in the affected SMM branch until the issue is resolved.