CVE-2022-29277 — HIGH (8.8)

Q: How severe is CVE-2022-29277?

CVE-2022-29277 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-29277?

Check the references section above for vendor advisories and patch information. Affected products include: Amd Genoa Firmware, Amd Genoa, Amd Hygon 1 Firmware, Amd Hygon 1, Amd Hygon 2 Firmware.

Vulnerability Description

Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: 05.10.12.0042 Snow Ridge: Trunk Graneville DE: 05.05.15.0038 Grangeville DE NS: 05.27.26.0023 Bakerville: 05.21.51.0026 Idaville: 05.44.27.0030 Whiskey Lake: Trunk Comet Lake-S: Trunk Tiger Lake H/UP3: 05.43.12.0052 Alder Lake: 05.44.23.0047 Gemini Lake: Not Affected Apollo Lake: Not Affected Elkhart Lake: 05.44.30.0018 AMD ROME: trunk MILAN: 05.36.10.0017 GENOA: 05.52.25.0006 Snowy Owl: Trunk R1000: 05.32.50.0018 R2000: 05.44.30.0005 V2000: Trunk V3000: 05.44.30.0007 Ryzen 5000: 05.44.30.0004 Embedded ROME: Trunk Embedded MILAN: Trunk Hygon Hygon #1/#2: 05.36.26.0016 Hygon #3: 05.44.26.0007 https://www.insyde.com/security-pledge/SA-2022060

CVSS Score

8.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Amd	Genoa Firmware	< 05.52.25.0006
Amd	Genoa	-
Amd	Hygon 1 Firmware	< 05.36.26.0016
Amd	Hygon 1	-
Amd	Hygon 2 Firmware	< 05.36.26.0016
Amd	Hygon 2	-
Amd	Hygon 3 Firmware	< 05.44.26.0007
Amd	Hygon 3	-
Amd	Milan Firmware	< 05.36.10.0017
Amd	Milan	-
Amd	Rome Firmware	< 05.36.10.0017
Amd	Rome	-
Amd	Ryzen 5300G Firmware	< 05.44.30.0004
Amd	Ryzen 5300G	-
Amd	Ryzen 5300Ge Firmware	< 05.44.30.0004
Amd	Ryzen 5300Ge	-
Amd	Ryzen 5600G Firmware	< 05.44.30.0004
Amd	Ryzen 5600G	-
Amd	Ryzen 5600Ge Firmware	< 05.44.30.0004
Amd	Ryzen 5600Ge	-

Related Weaknesses (CWE)

CWE-787

References

https://www.insyde.com/security-pledgeVendor Advisory
https://www.insyde.com/security-pledge/SA-2022060Vendor Advisory
https://www.insyde.com/security-pledgeVendor Advisory
https://www.insyde.com/security-pledge/SA-2022060Vendor Advisory

FAQ

What is CVE-2022-29277?

CVE-2022-29277 is a vulnerability with a CVSS score of 8.8 (HIGH). Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked...

How severe is CVE-2022-29277?

CVE-2022-29277 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-29277?

Check the references section above for vendor advisories and patch information. Affected products include: Amd Genoa Firmware, Amd Genoa, Amd Hygon 1 Firmware, Amd Hygon 1, Amd Hygon 2 Firmware.