CVE-2023-22615

Name of the Vulnerable Software and Affected Versions Insyde InsydeH2O with kernel versions 5.0 through 5.5

Description An issue was discovered in IhisiSmm that may corrupt SMRAM. An attacker can pass an address in the RCX save state register that overlaps SMRAM, coercing an IHISI subfunction handler to overwrite private SMRAM. The vulnerability is related to errors in state management and can be exploited by a remote attacker to cause a denial of service.

Recommendations For Insyde InsydeH2O with kernel versions 5.0 through 5.5, consider disabling the IHISI subfunction execution as a temporary workaround until a patch is available. Restrict access to the SMRAM to minimize the risk of exploitation. Avoid using the RCX save state register in the affected kernel versions until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.