CVE-2021-33627 : An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.09.11, 5.1 befo

An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.09.11, 5.1 before 05.17.11, 5.2 before 05.27.11, 5.3 before 05.36.11, 5.4 before 05.44.11, and 5.5 before 05.52.11 affecting FwBlockServiceSmm. Software SMI services that use the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL do not check whether the address of the buffer is valid, which allows use of SMRAM, MMIO, or OS kernel addresses.

Published 2022-02-03 02:15:07

Updated 2024-07-22 17:15:03

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2021-33627

Siemens » Simatic Ipc427e Firmware
cpe:2.3:o:siemens:simatic_ipc427e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc427e » Version: N/A
Siemens » Simatic Ipc477e Firmware
cpe:2.3:o:siemens:simatic_ipc477e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc477e » Version: N/A
Siemens » Simatic Itp1000 Firmware
cpe:2.3:o:siemens:simatic_itp1000_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Itp1000 » Version: N/A
Siemens » Simatic Field Pg M5 Firmware
cpe:2.3:o:siemens:simatic_field_pg_m5_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Field Pg M5 » Version: N/A
Siemens » Simatic Field Pg M6 Firmware
cpe:2.3:o:siemens:simatic_field_pg_m6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Field Pg M6 » Version: N/A
Siemens » Simatic Ipc127e Firmware
cpe:2.3:o:siemens:simatic_ipc127e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc127e » Version: N/A
Siemens » Simatic Ipc227g Firmware
cpe:2.3:o:siemens:simatic_ipc227g_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc227g » Version: N/A
Siemens » Simatic Ipc277g Firmware
cpe:2.3:o:siemens:simatic_ipc277g_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc277g » Version: N/A
Siemens » Simatic Ipc327g Firmware
cpe:2.3:o:siemens:simatic_ipc327g_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc327g » Version: N/A
Siemens » Simatic Ipc377g Firmware
cpe:2.3:o:siemens:simatic_ipc377g_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc377g » Version: N/A
Siemens » Simatic Ipc627e Firmware
cpe:2.3:o:siemens:simatic_ipc627e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc627e » Version: N/A
Siemens » Simatic Ipc647e Firmware
cpe:2.3:o:siemens:simatic_ipc647e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc647e » Version: N/A
Siemens » Simatic Ipc677e Firmware
cpe:2.3:o:siemens:simatic_ipc677e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc677e » Version: N/A
Siemens » Simatic Ipc847e Firmware
cpe:2.3:o:siemens:simatic_ipc847e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Ipc847e » Version: N/A
Insyde » Insydeh2o
Versions from including (>=) 5.0 and before (<) 5.08.29
cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*
Matching versions
Insyde » Insydeh2o
Versions from including (>=) 5.3 and before (<) 5.35.29
cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*
Matching versions
Insyde » Insydeh2o
Versions from including (>=) 5.1 and before (<) 5.16.29
cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*
Matching versions
Insyde » Insydeh2o
Versions from including (>=) 5.2 and before (<) 5.26.29
cpe:2.3:a:insyde:insydeh2o:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2021-33627

EPSS FAQ

0.19%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 38 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-33627

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
8.2	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H	1.5	6.0	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Changed Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2021-33627

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2021-33627

https://cert-portal.siemens.com/productcert/pdf/ssa-306654.pdf

Third Party Advisory

CVEs referencing this url
https://www.insyde.com/security-pledge/SA-2022022

Insyde Security Advisory 2022022 | Insyde Software
Vendor Advisory
https://www.insyde.com/security-pledge

Insyde's Security Pledge | Insyde Software
Vendor Advisory

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20220222-0002/

CVE-2021-33627 InsydeH20 Vulnerability in NetApp Products | NetApp Product Security
Third Party Advisory

Jump to

Vulnerability Details : CVE-2021-33627

Products affected by CVE-2021-33627

Exploit prediction scoring system (EPSS) score for CVE-2021-33627

CVSS scores for CVE-2021-33627

CWE ids for CVE-2021-33627

References for CVE-2021-33627