CVE-2022-29277Out-of-bounds Write in AMD Genoa Firmware

CWE-787Out-of-bounds Write3 documents3 sources
Severity
8.8HIGHNVD
EPSS
0.0%
top 84.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
39
AMD Genoa FirmwareAMD Hygon 1 FirmwareAMD Hygon 2 Firmware+36 more
Timeline
PublishedNov 15
Latest updateNov 16

Description

Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: 05.10

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0

Affected Packages39 packages

NVDintel/alder_lake_firmware< 05.44.23.0047
NVDintel/comet_lake-s_firmware< 05.43.12.0052
NVDintel/whiskey_lake_firmware< 05.43.12.0052
NVDintel/tiger_lake_h_up3_firmware< 05.43.12.0052
NVDamd/hygon_1_firmware< 05.36.26.0016

🔴Vulnerability Details

2
GHSA
GHSA-88wh-qc3q-cp9g: Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver,2022-11-16
CVEList
CVE-2022-29277: Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver,2022-11-15
CVE-2022-29277 — Out-of-bounds Write in AMD | cvebase