CVE-2023-31041 Information

Description

An issue was discovered in SysPasswordDxe in Insyde InsydeH2O with kernel 5.0 through 5.5. System password information could optionally be stored in cleartext which might lead to possible information disclosure.

Reference

https://www.insyde.com/security-pledge/SA-2023047