CVE-2022-40250

Exploit

EPSS 0.16%
Veröffentlicht 20.09.2022 18:15:10
Zuletzt bearbeitet 28.05.2025 19:15:31
Quelle cret@cert.org
Teams Watchlist Login
Unerledigt Login

An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environment more privileged than operating system (OS) and completely isolated from it. Running arbitrary code in SMM additionally bypasses SMM-based SPI flash protections against modifications, which can help an attacker to install a firmware backdoor/implant into BIOS. Such a malicious firmware code in BIOS could persist across operating system re-installs. Additionally, this vulnerability potentially could be used by malicious actors to bypass security mechanisms provided by UEFI firmware (for example, Secure Boot and some types of memory isolation for hypervisors). This issue affects: Module name: SmmSmbiosElog SHA256: 3a8acb4f9bddccb19ec3b22b22ad97963711550f76b27b606461cd5073a93b59 Module GUID: 8e61fd6b-7a8b-404f-b83f-aa90a47cabdf This issue affects: AMI Aptio 5.x. This issue affects: AMI Aptio 5.x.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Intel ≫ Nuc M15 Laptop Kit Lapbc510 Firmware Versionbc0074

Intel ≫ Nuc M15 Laptop Kit Lapbc510 Version-

Intel ≫ Nuc M15 Laptop Kit Lapbc710 Firmware Versionbc0074

Intel ≫ Nuc M15 Laptop Kit Lapbc710 Version-

Ami ≫ Aptio V Version5.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.16%	0.372

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2	6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	8.8	2	6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00712.html

Third Party Advisory

Not Applicable

https://www.ami.com/security-center/

Vendor Advisory

https://www.binarly.io/advisories/BRLY-2022-016

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2022-40250

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-40250

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-40250

EUVD