A vulnerability, which was classified as critical, was found in Insyde InsydeH2O. This affects an unknown part of the component HddPassword. The manipulation leads to memory corruption.

This vulnerability is uniquely identified as CVE-2024-25079. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.