CVE-2024-52877

An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, callback function SmmCreateVariableLockList () calls CreateVariableLockListInSmm (). In CreateVariableLockListInSmm (), it uses StrSize () to get variable name size and it could lead to a buffer over-read.

CVSS

No CVSS.

References

Link	Resource
https://www.insyde.com/security-pledge	Vendor Advisory
https://www.insyde.com/security-pledge/sa-2024016/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::
	cpe:2.3:a:insyde:insydeh2o::::::::

History

15 Aug 2025, 17:06

Type	Values Removed	Values Added
First Time		Insyde insydeh2o Insyde
CPE		cpe:2.3:a:insyde:insydeh2o::::::::
References	~~() https://www.insyde.com/security-pledge -~~	() https://www.insyde.com/security-pledge - Vendor Advisory
References	~~() https://www.insyde.com/security-pledge/sa-2024016/ -~~	() https://www.insyde.com/security-pledge/sa-2024016/ - Vendor Advisory

15 May 2025, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-15 16:15

Updated : 2025-08-15 17:06

NVD link : CVE-2024-52877

Mitre link : CVE-2024-52877

JSON object : View

Products Affected

insyde

insydeh2o

CWE

No CWE.

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://www.insyde.com/security-pledge", "name": "https://www.insyde.com/security-pledge", "tags": ["Vendor Advisory"], "refsource": ""}, {"url": "https://www.insyde.com/security-pledge/sa-2024016/", "name": "https://www.insyde.com/security-pledge/sa-2024016/", "tags": ["Vendor Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, callback function SmmCreateVariableLockList () calls CreateVariableLockListInSmm (). In CreateVariableLockListInSmm (), it uses StrSize () to get variable name size and it could lead to a buffer over-read."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-52877", "ASSIGNER": "cve@mitre.org"}}, "impact": {}, "publishedDate": "2025-05-15T16:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.2.05.29.50", "versionStartIncluding": "5.2"}, {"cpe23Uri": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.3.05.38.50", "versionStartIncluding": "5.3"}, {"cpe23Uri": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.4.05.46.50", "versionStartIncluding": "5.4"}, {"cpe23Uri": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.5.05.54.50", "versionStartIncluding": "5.5"}, {"cpe23Uri": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.6.05.61.50", "versionStartIncluding": "5.6"}, {"cpe23Uri": "cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "5.7.05.70.50", "versionStartIncluding": "5.7"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-08-15T17:06Z"}