{"vulnerability": "CVE-2023-27373", "sightings": [{"uuid": "85ae44a7-2c10-43a2-a69d-49b0018aea0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-27373", "type": "seen", "source": "https://t.me/cibsecurity/67883", "content": "\u203c CVE-2023-27373 \u203c\n\nAn issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. Due to insufficient input validation, an attacker can tamper with a runtime-accessible EFI variable to cause a dynamic BAR setting to overlap SMRAM.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-07T18:13:56.000000Z"}, {"uuid": "dbb71c50-26b3-4344-9740-cae0925e27f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-27373", "type": "seen", "source": "Telegram/-AxhsKGxYsf0yXmGJkTxKKWyyIp4r7m6K4Nyxzojor2igUJT", "content": "", "creation_timestamp": "2025-03-08T04:35:53.000000Z"}, {"uuid": "85b14183-58b6-466d-aac3-e7029bf33a35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-27373", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6889", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27373\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. Due to insufficient input validation, an attacker can tamper with a runtime-accessible EFI variable to cause a dynamic BAR setting to overlap SMRAM.\n\ud83d\udccf Published: 2023-08-07T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-07T19:25:36.184Z\n\ud83d\udd17 References:\n1. https://www.insyde.com/security-pledge/SA-2023035", "creation_timestamp": "2025-03-07T20:40:38.000000Z"}]}