CVE-2023-22614

EPSS 0.21% · P43 Updated Feb 12, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-22614

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There is insufficient input validation in BIOS Guard updates. An attacker can induce memory corruption in SMM by supplying malformed inputs to the BIOS Guard SMI handler.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Insyde InsydeH2O 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Insyde InsydeH2O是中国台湾系微（Insyde）公司的一个 C 语言源，它实现了新技术“EFI/UEFI”规范，旨在取代传统的 BIOS（基本输入/输出系统）。 Insyde InsydeH2O with kernel 5.0 至 5.5版本存在安全漏洞，该漏洞源于通过向 BIOS Guard SMI 处理程序提供格式错误的输入会引发 SMM 中的内存损坏。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2023-22614

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-22614

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-04-11 · 44 CVEs total

CVE-2023-26122	8.8 HIGH	safe-eval 安全漏洞
CVE-2023-26121	7.5 HIGH	safe-eval 安全漏洞
CVE-2023-26964		hyper 安全漏洞
CVE-2023-25414		ATEN International PE8108 安全漏洞
CVE-2023-26917		libyang 代码问题漏洞
CVE-2023-27179		GDidees CMS 代码问题漏洞
CVE-2023-27645		POWERAMP 安全漏洞
CVE-2023-28340		Zoho ManageEngine Applications Manager 代码问题漏洞
CVE-2023-28341		Zoho ManageEngine Applications Manager 跨站脚本漏洞
CVE-2023-29492		Novi Survey 代码注入漏洞
CVE-2023-27192		DUALSPACE Super Secuirty 安全漏洞
CVE-2023-26846		OpenCats 跨站脚本漏洞
CVE-2023-26845		OpenCats 跨站请求伪造漏洞
CVE-2023-26554		NTP 缓冲区错误漏洞
CVE-2023-26553		NTP 缓冲区错误漏洞
CVE-2023-26552		NTP 缓冲区错误漏洞
CVE-2023-26551		NTP 缓冲区错误漏洞
CVE-2023-26260		Oxid Esales OXID eShop 安全漏洞
CVE-2023-25415		ATEN International PE8108 安全漏洞
CVE-2023-29576		Bento4 缓冲区错误漏洞

Showing top 20 of 44 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-22614

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-22614

I. Basic Information for CVE-2023-22614

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-22614

III. Intelligence Information for CVE-2023-22614

Same Patch Batch · n/a · 2023-04-11 · 44 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-22614

Leave a comment