CVE-2022-40246 — Write-what-where Condition in Aptio

CWE-123 — Write-what-where Condition CWE-787 — Out-of-bounds Write3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.2%

top 62.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AMI Aptio Intel NUC M15 Laptop KIT Lapbc510 Firmware Intel NUC M15 Laptop KIT Lapbc710 Firmware

Timeline

PublishedSep 20

Latest updateSep 21

Description

A potential attacker can write one byte by arbitrary address at the time of the PEI phase (only during S3 resume boot mode) and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines (VMs) and bypassing memory isolation and confidential computing boundaries. Additionally, an attacker can build a payload which can be injected into the SMRAM memory. This issue affects: Module name: Sb…

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 0.5 | Impact: 6.0

Affected Packages3 packages

▶CVEListV5ami/aptio5.x

▶NVDintel/nuc_m15_laptop_kit_lapbc510_firmware0072

▶NVDintel/nuc_m15_laptop_kit_lapbc710_firmware0072

🔴Vulnerability Details

GHSA

GHSA-jjpm-q6jh-v8gj: A potential attacker can write one byte by arbitrary address at the time of the PEI phase (only during S3 resume boot mode) and influence the subseque↗2022-09-21

▶

CVEList

Arbitrary write vulnerability in SbPei module leads to arbitrary code execution during PEI phase.↗2022-09-20

▶