CVE-2025-4277— Tcg2Smm: improper input validation may lead to arbitrary code execution
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-4277
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tcg2Smm: improper input validation may lead to arbitrary code execution
Source: NVD (National Vulnerability Database)
Vulnerability Description
Tcg2Smm has a vulnerability which can be used to write arbitrary memory inside SMRAM and execute arbitrary code at SMM level.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
InsydeH2O 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
InsydeH2O是中国系微(Insyde)公司的一款可定制固件代码库。 InsydeH2O存在安全漏洞,该漏洞源于可写入SMRAM任意内存并在SMM级别执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Insyde Software | InsydeH2O | Kernel 5.2 ~ 05.2A.21 | - |
II. Public POCs for CVE-2025-4277
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-4277
请登录查看更多情报信息。
Same Patch Batch · Insyde Software · 2025-08-13 · 3 CVEs total
| CVE-2025-4276 | 7.5 HIGH | UsbCoreDxe: improper input validation may lead to arbitrary code execution |
| CVE-2025-4410 | 7.5 HIGH | SetupUtility: A buffer overflow vulnerability leads to arbitrary code execution. |
IV. Related Vulnerabilities
Same product: InsydeH2O
- CVE-2025-10451
H19Int15CallbackSmm: SMM memory corruption vulnerability in - CVE-2025-4410
SetupUtility: A buffer overflow vulnerability leads to arbit - CVE-2025-4276
UsbCoreDxe: improper input validation may lead to arbitrary - CVE-2025-4426
SetupAutomationSmm : SMRAM memory contents leak / informatio - CVE-2025-4425
SetupAutomationSmm: Stack overflow vulnerability in SMI hand
Same vendor: Insyde Software
- CVE-2025-12053
egwindrvx64.sys is potentially vulnerable to a buffer overfl - CVE-2025-12052
egwindrv.sys is potentially vulnerable to a buffer overflow. - CVE-2025-12051
H2OFFT64.sys is potentially vulnerable to a buffer overflow. - CVE-2025-12050
In H2OFFT32.sys is potentially vulnerable to a buffer overfl - CVE-2025-10451
H19Int15CallbackSmm: SMM memory corruption vulnerability in
Same weakness: CWE-20
V. Comments for CVE-2025-4277
No comments yet