CVE-2025-4277 | Insyde H2O up to 05.71.20 Tcg2Smm input validation

Inserito da Angelo Barbosa | Ago 13, 2025 | CVE

A vulnerability was found in Insyde H2O up to 05.71.20. It has been rated as critical. This issue affects the function Tcg2Smm. The manipulation leads to improper input validation.

The identification of this vulnerability is CVE-2025-4277. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-4277 | Insyde H2O up to 05.71.20 Tcg2Smm input validation

Post correlati

CVE-2024-28195 | Yooooomi your_spotify up to 1.8.x API/Login cross-site request forgery

CVE-2024-0420 | MapPress Maps Plugin prior 2.88.15 on WordPress Admin Dashboard Map Title cross site scripting

CVE-2024-5077 | WP-FeedStats wp-eMember Plugin up to 10.6.5 on WordPress cross-site request forgery

CVE-2024-45247 | Sonarr prior 4.0.9.2244 redirect