CVE-2021-33627: Buffer Overflow
First published: Thu Feb 03 2022(Updated: )
An issue was discovered in Insyde InsydeH2O 5.x, affecting FwBlockServiceSmm. Software SMI services that use the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL do not check whether the address of the buffer is valid, which allows use of SMRAM, MMIO, or OS kernel addresses
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Insyde InsydeH2O UEFI BIOS | >=5.0<5.08.29 | |
| Insyde InsydeH2O UEFI BIOS | >=5.1<5.16.29 | |
| Insyde InsydeH2O UEFI BIOS | >=5.2<5.26.29 | |
| Insyde InsydeH2O UEFI BIOS | >=5.3<5.35.29 | |
| All of | ||
| Siemens Simatic Field PG M5 | ||
| Siemens Simatic Field PG M5 | ||
| All of | ||
| siemens simatic field pg m6 | ||
| siemens simatic field pg m6 firmware | ||
| All of | ||
| siemens simatic ipc127e | ||
| siemens simatic ipc127e firmware | ||
| All of | ||
| Siemens Simatic IPC227G Firmware | ||
| Siemens Simatic IPC227G | ||
| All of | ||
| Siemens Simatic IPC277G | ||
| Siemens Simatic IPC277G | ||
| All of | ||
| Siemens Simatic IPC327G Firmware | ||
| Siemens Simatic IPC327G Firmware | ||
| All of | ||
| Siemens Simatic IPC377G | ||
| Siemens Simatic IPC377G | ||
| All of | ||
| Siemens Simatic IPC427E Firmware | ||
| Siemens Simatic IPC427E Firmware | ||
| All of | ||
| Siemens Simatic IPC477E Firmware | ||
| Siemens Simatic IPC477E Firmware | ||
| All of | ||
| siemens simatic ipc627e firmware | ||
| siemens simatic ipc627e | ||
| All of | ||
| siemens simatic ipc647e firmware | ||
| siemens simatic ipc647e | ||
| All of | ||
| siemens simatic ipc677e firmware | ||
| siemens simatic ipc677e | ||
| All of | ||
| siemens simatic ipc847e firmware | ||
| siemens simatic ipc847e | ||
| All of | ||
| Siemens Simatic ITP1000 | ||
| Siemens Simatic ITP1000 Firmware | ||
| Siemens Simatic Field PG M5 | ||
| Siemens Simatic Field PG M5 | ||
| siemens simatic field pg m6 firmware | ||
| siemens simatic field pg m6 | ||
| siemens simatic ipc127e firmware | ||
| siemens simatic ipc127e | ||
| Siemens Simatic IPC227G | ||
| Siemens Simatic IPC227G Firmware | ||
| Siemens Simatic IPC277G | ||
| Siemens Simatic IPC277G | ||
| Siemens Simatic IPC327G Firmware | ||
| Siemens Simatic IPC327G Firmware | ||
| Siemens Simatic IPC377G | ||
| Siemens Simatic IPC377G | ||
| Siemens Simatic IPC427E Firmware | ||
| Siemens Simatic IPC427E Firmware | ||
| Siemens Simatic IPC477E Firmware | ||
| Siemens Simatic IPC477E Firmware | ||
| siemens simatic ipc627e firmware | ||
| siemens simatic ipc627e | ||
| siemens simatic ipc647e firmware | ||
| siemens simatic ipc647e | ||
| siemens simatic ipc677e firmware | ||
| siemens simatic ipc677e | ||
| siemens simatic ipc847e firmware | ||
| siemens simatic ipc847e | ||
| Siemens Simatic ITP1000 | ||
| Siemens Simatic ITP1000 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2021-33627.
What is the severity level of CVE-2021-33627?
The severity level of CVE-2021-33627 is high with a CVSS score of 8.2.
What software is affected by CVE-2021-33627?
Insyde InsydeH2O 5.x and Siemens Simatic Field Pg M5 Firmware are affected by CVE-2021-33627.
How does CVE-2021-33627 impact the affected software?
CVE-2021-33627 allows an attacker to use SMRAM, MMIO, or OS kernel addresses through the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL.
Are there any available fixes for CVE-2021-33627?
For available fixes, please refer to the vendor's security advisory and security pledge.
- agent/references
- agent/type
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/severity
- agent/event
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/insyde
- canonical/insyde insydeh2o uefi bios
- version/insyde insydeh2o uefi bios/5.0
- version/insyde insydeh2o uefi bios/5.1
- version/insyde insydeh2o uefi bios/5.2
- version/insyde insydeh2o uefi bios/5.3
- vendor/siemens
- canonical/siemens simatic field pg m5
- canonical/siemens simatic field pg m6
- canonical/siemens simatic field pg m6 firmware
- canonical/siemens simatic ipc127e
- canonical/siemens simatic ipc127e firmware
- canonical/siemens simatic ipc227g firmware
- canonical/siemens simatic ipc227g
- canonical/siemens simatic ipc277g
- canonical/siemens simatic ipc327g firmware
- canonical/siemens simatic ipc377g
- canonical/siemens simatic ipc427e firmware
- canonical/siemens simatic ipc477e firmware
- canonical/siemens simatic ipc627e firmware
- canonical/siemens simatic ipc627e
- canonical/siemens simatic ipc647e firmware
- canonical/siemens simatic ipc647e
- canonical/siemens simatic ipc677e firmware
- canonical/siemens simatic ipc677e
- canonical/siemens simatic ipc847e firmware
- canonical/siemens simatic ipc847e
- canonical/siemens simatic itp1000
- canonical/siemens simatic itp1000 firmware