Primary

Context

InsydeH2O Drivers Buffer Overflow Vulnerability in egwindrvx64.sys

Vulnerability

Patched

A buffer overflow vulnerability has been identified in the InsydeH2O driver egwindrvx64.sys. This vulnerability arises because the driver uses the RTL_QUERY_REGISTRY_DIRECT flag to read a registry value, which an untrusted user-mode application could potentially exploit to cause a buffer overflow.

Impact

Exploitation of this vulnerability could lead to a buffer overflow, allowing for out-of-bounds write conditions that could be exploited to execute arbitrary code or cause a denial-of-service.

Remediation

Users are advised to update to version 200.02.01.00 or newer. Instructions for downloading the updated version can be found on the Insyde Software website.

Added: Jan 14, 2026, 2:18 AM

Updated: Jan 14, 2026, 2:18 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

InsydeH2O Drivers Buffer Overflow Vulnerability in egwindrvx64.sys

Vulnerability

Impact

Remediation

Affected Products

InsydeH2O

InsydeH2OFFT

InsydeH2OUVE

InsydeH2OSDE

InsydeH2ORTE

InsydeH2OOAE

InsydeH2OPCM

InsydeH2OELV

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating