CVE-2024-55567

Improper input validation was discovered in UsbCoreDxe in Insyde InsydeH2O kernel 5.4 before 05.47.01, 5.5 before 05.55.01, 5.6 before 05.62.01, and 5.7 before 05.71.01. The SMM module has an SMM call out vulnerability which can be used to write arbitrary memory inside SMRAM and execute arbitrary code at SMM level.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 0.8 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://www.insyde.com/security-pledge/sa-2024018/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::

History

20 Aug 2025, 17:31

Type	Values Removed	Values Added
References	~~() https://www.insyde.com/security-pledge/sa-2024018/ -~~	() https://www.insyde.com/security-pledge/sa-2024018/ - Vendor Advisory
CPE		cpe:2.3:a:insyde:insydeh2o::::::::
First Time		Insyde Insyde insydeh2o

17 Jun 2025, 19:15

Type	Values Removed	Values Added
CWE		CWE-20

16 Jun 2025, 12:32

Type	Values Removed	Values Added
Summary		(es) Se detectó una validación de entrada incorrecta en UsbCoreDxe en el kernel InsydeH2O 5.4 anterior a 05.47.01, 5.5 anterior a 05.55.01, 5.6 anterior a 05.62.01 y 5.7 anterior a 05.71.01. El módulo SMM presenta una vulnerabilidad de llamada a SMM que permite escribir memoria arbitraria dentro de SMRAM y ejecutar código arbitrario a nivel de SMM.

12 Jun 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-06-12 17:15

Updated : 2025-08-20 17:31

NVD link : CVE-2024-55567

Mitre link : CVE-2024-55567

CVE.ORG link : CVE-2024-55567

JSON object : View

Products Affected

insyde

insydeh2o

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2024-55567", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 0.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}]}, "published": "2025-06-12T17:15:28.707", "references": [{"url": "https://www.insyde.com/security-pledge/sa-2024018/", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Improper input validation was discovered in UsbCoreDxe in Insyde InsydeH2O kernel 5.4 before 05.47.01, 5.5 before 05.55.01, 5.6 before 05.62.01, and 5.7 before 05.71.01. The SMM module has an SMM call out vulnerability which can be used to write arbitrary memory inside SMRAM and execute arbitrary code at SMM level."}, {"lang": "es", "value": "Se detect\u00f3 una validaci\u00f3n de entrada incorrecta en UsbCoreDxe en el kernel InsydeH2O 5.4 anterior a 05.47.01, 5.5 anterior a 05.55.01, 5.6 anterior a 05.62.01 y 5.7 anterior a 05.71.01. El m\u00f3dulo SMM presenta una vulnerabilidad de llamada a SMM que permite escribir memoria arbitraria dentro de SMRAM y ejecutar c\u00f3digo arbitrario a nivel de SMM."}], "lastModified": "2025-08-20T17:31:31.460", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D79E4D92-3BAF-4FD0-8287-7CCCD8465AE5", "versionEndExcluding": "5.4.05.47.01", "versionStartIncluding": "5.4"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9DB15FC-B139-4134-8299-E78DC0F1BE40", "versionEndExcluding": "5.5.05.55.01", "versionStartIncluding": "5.5"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E03C794-F9F8-40FA-872D-A4D8BFCE6DDF", "versionEndExcluding": "5.6.05.62.01", "versionStartIncluding": "5.6"}, {"criteria": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F08205C-0875-4490-A9C2-5330605E1D2D", "versionEndExcluding": "5.7.05.71.01", "versionStartIncluding": "5.7"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}