CVE-2022-29277
Severity Score
8.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: 05.10.12.0042 Snow Ridge: Trunk Graneville DE: 05.05.15.0038 Grangeville DE NS: 05.27.26.0023 Bakerville: 05.21.51.0026 Idaville: 05.44.27.0030 Whiskey Lake: Trunk Comet Lake-S: Trunk Tiger Lake H/UP3: 05.43.12.0052 Alder Lake: 05.44.23.0047 Gemini Lake: Not Affected Apollo Lake: Not Affected Elkhart Lake: 05.44.30.0018 AMD ROME: trunk MILAN: 05.36.10.0017 GENOA: 05.52.25.0006 Snowy Owl: Trunk R1000: 05.32.50.0018 R2000: 05.44.30.0005 V2000: Trunk V3000: 05.44.30.0007 Ryzen 5000: 05.44.30.0004 Embedded ROME: Trunk Embedded MILAN: Trunk Hygon Hygon #1/#2: 05.36.26.0016 Hygon #3: 05.44.26.0007 https://www.insyde.com/security-pledge/SA-2022060
Las comprobaciones incorrectas del puntero dentro del controlador FwBlockServiceSmm pueden permitir modificaciones arbitrarias de la RAM. Durante la revisión del controlador FwBlockServiceSmm, se podría engañar a ciertas instancias de SpiAccessLib para que escriban 0xff en direcciones SMRAM y del sistema arbitrarias. Solucionado en:
INTEL Purley-R: 05.21.51.0048
Whitley: 05.42.23.0066
Cedar Island: 05.42.11.0021
Eagle Stream: 05.44.25.0052
Greenlow/Greenlow-R(skylake/kabylake): Trunk
Mehlow/Mehlow-R (CoffeeLake-S) : Trunk
Tatlow (RKL-S): Trunk
Denverton: 05.10.12.0042
Snow Ridge: Trunk
Graneville DE: 05.05.15.0038
Grangeville DE NS: 05.27.26.0023
Bakerville: 05.21.51.0026
Idaville: 05.44.27.0030
Whiskey Lake: Trunk
Comet Lake-S : Trunk
Tiger Lake H/UP3: 05.43.12.0052
Alder Lake: 05.44.23.0047
Gemini Lake: No afectado
Apollo Lake: No afectado
Elkhart Lake: 05.44.30.0018
AMD ROMA: Trunk
MILAN: 05.36.10.0017
GÉNOVA: 05.52.25.0006
Nival: Trunk
R1000: 05.32.50.0018
R2000: 05.44.30.0005
V2000: Trunk
V3000: 05.44.30.0007
Ryzen 5000: 05.44.30.0004 Embedded
ROME: Trunk Embedded
MILAN: Trunk
Hygon Hygon #1/#2: 05.36.2 6.0016
Hygon #3: 05.44. 26.0007
https://www.insyde.com/security-pledge/SA-2022060
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-04-15 CVE Reserved
- 2022-11-15 CVE Published
- 2024-06-07 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.insyde.com/security-pledge | 2022-11-22 | |
| https://www.insyde.com/security-pledge/SA-2022060 | 2022-11-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Amd Search vendor "Amd" | Genoa Firmware Search vendor "Amd" for product "Genoa Firmware" | < 05.52.25.0006 Search vendor "Amd" for product "Genoa Firmware" and version " < 05.52.25.0006" | - |
Affected
| in | Amd Search vendor "Amd" | Genoa Search vendor "Amd" for product "Genoa" | - | - |
Safe
|
| Amd Search vendor "Amd" | Hygon 1 Firmware Search vendor "Amd" for product "Hygon 1 Firmware" | < 05.36.26.0016 Search vendor "Amd" for product "Hygon 1 Firmware" and version " < 05.36.26.0016" | - |
Affected
| in | Amd Search vendor "Amd" | Hygon 1 Search vendor "Amd" for product "Hygon 1" | - | - |
Safe
|
| Amd Search vendor "Amd" | Hygon 2 Firmware Search vendor "Amd" for product "Hygon 2 Firmware" | < 05.36.26.0016 Search vendor "Amd" for product "Hygon 2 Firmware" and version " < 05.36.26.0016" | - |
Affected
| in | Amd Search vendor "Amd" | Hygon 2 Search vendor "Amd" for product "Hygon 2" | - | - |
Safe
|
| Amd Search vendor "Amd" | Hygon 3 Firmware Search vendor "Amd" for product "Hygon 3 Firmware" | < 05.44.26.0007 Search vendor "Amd" for product "Hygon 3 Firmware" and version " < 05.44.26.0007" | - |
Affected
| in | Amd Search vendor "Amd" | Hygon 3 Search vendor "Amd" for product "Hygon 3" | - | - |
Safe
|
| Amd Search vendor "Amd" | Milan Firmware Search vendor "Amd" for product "Milan Firmware" | < 05.36.10.0017 Search vendor "Amd" for product "Milan Firmware" and version " < 05.36.10.0017" | - |
Affected
| in | Amd Search vendor "Amd" | Milan Search vendor "Amd" for product "Milan" | - | - |
Safe
|
| Amd Search vendor "Amd" | Milan Firmware Search vendor "Amd" for product "Milan Firmware" | < 05.36.26.0016 Search vendor "Amd" for product "Milan Firmware" and version " < 05.36.26.0016" | embedded |
Affected
| in | Amd Search vendor "Amd" | Milan Search vendor "Amd" for product "Milan" | - | embedded |
Safe
|
| Amd Search vendor "Amd" | Rome Firmware Search vendor "Amd" for product "Rome Firmware" | < 05.36.10.0017 Search vendor "Amd" for product "Rome Firmware" and version " < 05.36.10.0017" | - |
Affected
| in | Amd Search vendor "Amd" | Rome Search vendor "Amd" for product "Rome" | - | - |
Safe
|
| Amd Search vendor "Amd" | Rome Firmware Search vendor "Amd" for product "Rome Firmware" | < 05.36.26.0016 Search vendor "Amd" for product "Rome Firmware" and version " < 05.36.26.0016" | embedded |
Affected
| in | Amd Search vendor "Amd" | Rome Search vendor "Amd" for product "Rome" | - | embedded |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5300g Firmware Search vendor "Amd" for product "Ryzen 5300g Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5300g Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5300g Search vendor "Amd" for product "Ryzen 5300g" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5300ge Firmware Search vendor "Amd" for product "Ryzen 5300ge Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5300ge Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5300ge Search vendor "Amd" for product "Ryzen 5300ge" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5600g Firmware Search vendor "Amd" for product "Ryzen 5600g Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5600g Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5600g Search vendor "Amd" for product "Ryzen 5600g" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5600ge Firmware Search vendor "Amd" for product "Ryzen 5600ge Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5600ge Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5600ge Search vendor "Amd" for product "Ryzen 5600ge" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5600x Firmware Search vendor "Amd" for product "Ryzen 5600x Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5600x Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5600x Search vendor "Amd" for product "Ryzen 5600x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5700g Firmware Search vendor "Amd" for product "Ryzen 5700g Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5700g Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5700g Search vendor "Amd" for product "Ryzen 5700g" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5700ge Firmware Search vendor "Amd" for product "Ryzen 5700ge Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5700ge Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5700ge Search vendor "Amd" for product "Ryzen 5700ge" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5800x Firmware Search vendor "Amd" for product "Ryzen 5800x Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5800x Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5800x Search vendor "Amd" for product "Ryzen 5800x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5800x3d Firmware Search vendor "Amd" for product "Ryzen 5800x3d Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5800x3d Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5800x3d Search vendor "Amd" for product "Ryzen 5800x3d" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5900x Firmware Search vendor "Amd" for product "Ryzen 5900x Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5900x Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5900x Search vendor "Amd" for product "Ryzen 5900x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 5950x Firmware Search vendor "Amd" for product "Ryzen 5950x Firmware" | < 05.44.30.0004 Search vendor "Amd" for product "Ryzen 5950x Firmware" and version " < 05.44.30.0004" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 5950x Search vendor "Amd" for product "Ryzen 5950x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Snowy Owl R1000 Firmware Search vendor "Amd" for product "Snowy Owl R1000 Firmware" | < 05.32.50.0018 Search vendor "Amd" for product "Snowy Owl R1000 Firmware" and version " < 05.32.50.0018" | - |
Affected
| in | Amd Search vendor "Amd" | Snowy Owl R1000 Search vendor "Amd" for product "Snowy Owl R1000" | - | - |
Safe
|
| Amd Search vendor "Amd" | Snowy Owl R2000 Firmware Search vendor "Amd" for product "Snowy Owl R2000 Firmware" | < 05.44.30.0005 Search vendor "Amd" for product "Snowy Owl R2000 Firmware" and version " < 05.44.30.0005" | - |
Affected
| in | Amd Search vendor "Amd" | Snowy Owl R2000 Search vendor "Amd" for product "Snowy Owl R2000" | - | - |
Safe
|
| Amd Search vendor "Amd" | Snowy Owl V2000 Firmware Search vendor "Amd" for product "Snowy Owl V2000 Firmware" | < 05.44.30.0007 Search vendor "Amd" for product "Snowy Owl V2000 Firmware" and version " < 05.44.30.0007" | - |
Affected
| in | Amd Search vendor "Amd" | Snowy Owl V2000 Search vendor "Amd" for product "Snowy Owl V2000" | - | - |
Safe
|
| Amd Search vendor "Amd" | Snowy Owl V3000 Firmware Search vendor "Amd" for product "Snowy Owl V3000 Firmware" | < 05.44.30.0007 Search vendor "Amd" for product "Snowy Owl V3000 Firmware" and version " < 05.44.30.0007" | - |
Affected
| in | Amd Search vendor "Amd" | Snowy Owl V3000 Search vendor "Amd" for product "Snowy Owl V3000" | - | - |
Safe
|
| Intel Search vendor "Intel" | Alder Lake Firmware Search vendor "Intel" for product "Alder Lake Firmware" | < 05.44.23.0047 Search vendor "Intel" for product "Alder Lake Firmware" and version " < 05.44.23.0047" | - |
Affected
| in | Intel Search vendor "Intel" | Alder Lake Search vendor "Intel" for product "Alder Lake" | - | - |
Safe
|
| Intel Search vendor "Intel" | Bakerville Firmware Search vendor "Intel" for product "Bakerville Firmware" | < 05.21.51.0026 Search vendor "Intel" for product "Bakerville Firmware" and version " < 05.21.51.0026" | - |
Affected
| in | Intel Search vendor "Intel" | Bakerville Search vendor "Intel" for product "Bakerville" | - | - |
Safe
|
| Intel Search vendor "Intel" | Cedar Island Firmware Search vendor "Intel" for product "Cedar Island Firmware" | < 05.42.11.0021 Search vendor "Intel" for product "Cedar Island Firmware" and version " < 05.42.11.0021" | - |
Affected
| in | Intel Search vendor "Intel" | Cedar Island Search vendor "Intel" for product "Cedar Island" | - | - |
Safe
|
| Intel Search vendor "Intel" | Idaville Firmware Search vendor "Intel" for product "Idaville Firmware" | < 05.43.12.0052 Search vendor "Intel" for product "Idaville Firmware" and version " < 05.43.12.0052" | - |
Affected
| in | Intel Search vendor "Intel" | Idaville Search vendor "Intel" for product "Idaville" | - | - |
Safe
|
| Intel Search vendor "Intel" | Comet Lake-s Firmware Search vendor "Intel" for product "Comet Lake-s Firmware" | < 05.43.12.0052 Search vendor "Intel" for product "Comet Lake-s Firmware" and version " < 05.43.12.0052" | - |
Affected
| in | Intel Search vendor "Intel" | Comet Lake-s Search vendor "Intel" for product "Comet Lake-s" | - | - |
Safe
|
| Intel Search vendor "Intel" | Tiger Lake H\/up3 Firmware Search vendor "Intel" for product "Tiger Lake H\/up3 Firmware" | < 05.43.12.0052 Search vendor "Intel" for product "Tiger Lake H\/up3 Firmware" and version " < 05.43.12.0052" | - |
Affected
| in | Intel Search vendor "Intel" | Tiger Lake H\/up3 Search vendor "Intel" for product "Tiger Lake H\/up3" | - | - |
Safe
|
| Intel Search vendor "Intel" | Whiskey Lake Firmware Search vendor "Intel" for product "Whiskey Lake Firmware" | < 05.43.12.0052 Search vendor "Intel" for product "Whiskey Lake Firmware" and version " < 05.43.12.0052" | - |
Affected
| in | Intel Search vendor "Intel" | Whiskey Lake Search vendor "Intel" for product "Whiskey Lake" | - | - |
Safe
|
| Intel Search vendor "Intel" | Denverton Firmware Search vendor "Intel" for product "Denverton Firmware" | < 05.10.12.0042 Search vendor "Intel" for product "Denverton Firmware" and version " < 05.10.12.0042" | - |
Affected
| in | Intel Search vendor "Intel" | Denverton Search vendor "Intel" for product "Denverton" | - | - |
Safe
|
| Intel Search vendor "Intel" | Eagle Stream Firmware Search vendor "Intel" for product "Eagle Stream Firmware" | < 05.44.25.0052 Search vendor "Intel" for product "Eagle Stream Firmware" and version " < 05.44.25.0052" | - |
Affected
| in | Intel Search vendor "Intel" | Eagle Stream Search vendor "Intel" for product "Eagle Stream" | - | - |
Safe
|
| Intel Search vendor "Intel" | Grangeville De Ns Firmware Search vendor "Intel" for product "Grangeville De Ns Firmware" | < 05.27.26.0023 Search vendor "Intel" for product "Grangeville De Ns Firmware" and version " < 05.27.26.0023" | - |
Affected
| in | Intel Search vendor "Intel" | Grangeville De Ns Search vendor "Intel" for product "Grangeville De Ns" | - | - |
Safe
|
| Intel Search vendor "Intel" | Granville De Firmware Search vendor "Intel" for product "Granville De Firmware" | < 05.05.15.0038 Search vendor "Intel" for product "Granville De Firmware" and version " < 05.05.15.0038" | - |
Affected
| in | Intel Search vendor "Intel" | Granville De Search vendor "Intel" for product "Granville De" | - | - |
Safe
|
| Intel Search vendor "Intel" | Greenlow Firmware Search vendor "Intel" for product "Greenlow Firmware" | < 05.10.12.0042 Search vendor "Intel" for product "Greenlow Firmware" and version " < 05.10.12.0042" | - |
Affected
| in | Intel Search vendor "Intel" | Greenlow Search vendor "Intel" for product "Greenlow" | - | - |
Safe
|
| Intel Search vendor "Intel" | Greenlow-r Firmware Search vendor "Intel" for product "Greenlow-r Firmware" | < 05.10.12.0042 Search vendor "Intel" for product "Greenlow-r Firmware" and version " < 05.10.12.0042" | - |
Affected
| in | Intel Search vendor "Intel" | Greenlow-r Search vendor "Intel" for product "Greenlow-r" | - | - |
Safe
|
| Intel Search vendor "Intel" | Mehlow Firmware Search vendor "Intel" for product "Mehlow Firmware" | < 05.10.12.0042 Search vendor "Intel" for product "Mehlow Firmware" and version " < 05.10.12.0042" | - |
Affected
| in | Intel Search vendor "Intel" | Mehlow Search vendor "Intel" for product "Mehlow" | - | - |
Safe
|
| Intel Search vendor "Intel" | Mehlow-r Firmware Search vendor "Intel" for product "Mehlow-r Firmware" | < 05.10.12.0042 Search vendor "Intel" for product "Mehlow-r Firmware" and version " < 05.10.12.0042" | - |
Affected
| in | Intel Search vendor "Intel" | Mehlow-r Search vendor "Intel" for product "Mehlow-r" | - | - |
Safe
|
| Intel Search vendor "Intel" | Tatlow Firmware Search vendor "Intel" for product "Tatlow Firmware" | < 05.10.12.0042 Search vendor "Intel" for product "Tatlow Firmware" and version " < 05.10.12.0042" | - |
Affected
| in | Intel Search vendor "Intel" | Tatlow Search vendor "Intel" for product "Tatlow" | - | - |
Safe
|
| Intel Search vendor "Intel" | Purley-r Firmware Search vendor "Intel" for product "Purley-r Firmware" | < 05.21.51.0048 Search vendor "Intel" for product "Purley-r Firmware" and version " < 05.21.51.0048" | - |
Affected
| in | Intel Search vendor "Intel" | Purley-r Search vendor "Intel" for product "Purley-r" | - | - |
Safe
|
| Intel Search vendor "Intel" | Whitley Firmware Search vendor "Intel" for product "Whitley Firmware" | < 05.42.23.0066 Search vendor "Intel" for product "Whitley Firmware" and version " < 05.42.23.0066" | - |
Affected
| in | Intel Search vendor "Intel" | Whitley Search vendor "Intel" for product "Whitley" | - | - |
Safe
|