CVE-2022-40250 — Stack-based Buffer Overflow in Aptio

CWE-121 — Stack-based Buffer Overflow CWE-787 — Out-of-bounds Write3 documents3 sources

Severity

8.8HIGHNVD

EPSS

0.1%

top 74.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AMI Aptio AMI Aptio V Intel NUC M15 Laptop KIT Lapbc510 Firmware +1 more

Timeline

PublishedSep 20

Latest updateSep 21

Description

An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environment more privileged than operating system (OS) and completely isolated from it. Running arbitrary code in SMM additionally bypasses SMM-based SPI flash protections against modifications, which can help an attacker to install a firmware backdoor/implant into BIOS. Such a malicious firmware code in BIOS could persist across operating system re-insta…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0

Affected Packages4 packages

▶NVDintel/nuc_m15_laptop_kit_lapbc510_firmwarebc0074

▶NVDintel/nuc_m15_laptop_kit_lapbc710_firmwarebc0074

▶CVEListV5ami/aptio5.x

▶NVDami/aptio_v5.0

🔴Vulnerability Details

GHSA

GHSA-27wf-832r-r7vc: An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environ↗2022-09-21

▶

CVEList

Stack overflow vulnerability in SMI handler on SmmSmbiosElog.↗2022-09-20

▶