CVE-2025-4423— SetupAutomationSmm:Vulnerability in the SMM module allow attacker to write arbitrary code and lead to memory corruption
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-4423
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SetupAutomationSmm:Vulnerability in the SMM module allow attacker to write arbitrary code and lead to memory corruption
Source: NVD (National Vulnerability Database)
Vulnerability Description
The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/product_security/home
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
InsydeH2O 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
InsydeH2O是中国系微(Insyde)公司的一款可定制固件代码库。 InsydeH2O存在安全漏洞,该漏洞源于SMM模块中的漏洞允许攻击者编写任意代码并导致内存损坏。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Insyde Software | InsydeH2O | Feature developed for Lenovo ~ L05.05.40.011803.172079 | - |
II. Public POCs for CVE-2025-4423
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-4423
请登录查看更多情报信息。
Same Patch Batch · Insyde Software · 2025-07-30 · 6 CVEs total
| CVE-2025-4421 | 8.2 HIGH | EfiSmiServices: gEfiSmmCpuProtocol, SMM memory corruption vulnerabilities in SMM module |
| CVE-2025-4422 | 8.2 HIGH | EfiSmiServices : EfiPcdProtocol, SMM memory corruption vulnerabilities in SMM module |
| CVE-2025-4425 | 8.2 HIGH | SetupAutomationSmm: Stack overflow vulnerability in SMI handler |
| CVE-2025-4424 | 6.0 MEDIUM | SetupAutomationSmm : Arbitrary calls to SmmSetVariable with unsanitised arguments in SMI h |
| CVE-2025-4426 | 6.0 MEDIUM | SetupAutomationSmm : SMRAM memory contents leak / information disclosure vulnerability in |
IV. Related Vulnerabilities
Same product: InsydeH2O
- CVE-2025-10451
H19Int15CallbackSmm: SMM memory corruption vulnerability in - CVE-2025-4410
SetupUtility: A buffer overflow vulnerability leads to arbit - CVE-2025-4277
Tcg2Smm: improper input validation may lead to arbitrary cod - CVE-2025-4276
UsbCoreDxe: improper input validation may lead to arbitrary - CVE-2025-4426
SetupAutomationSmm : SMRAM memory contents leak / informatio
Same vendor: Insyde Software
- CVE-2025-12053
egwindrvx64.sys is potentially vulnerable to a buffer overfl - CVE-2025-12052
egwindrv.sys is potentially vulnerable to a buffer overflow. - CVE-2025-12051
H2OFFT64.sys is potentially vulnerable to a buffer overflow. - CVE-2025-12050
In H2OFFT32.sys is potentially vulnerable to a buffer overfl - CVE-2025-10451
H19Int15CallbackSmm: SMM memory corruption vulnerability in
Same weakness: CWE-119
- CVE-2026-22167
GPU DDK - Cache resident PM buffers writable by other GPU re - CVE-2026-27890
Firebird has Pre-Auth DOS when Processing Out of Order CNCT_ - CVE-2026-34864
Huawei HarmonyOS 安全漏洞 - CVE-2026-4149
Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code - CVE-2026-34988
Wasmtime leaks data between pooling allocator instances
V. Comments for CVE-2025-4423
No comments yet