CVE-2022-29277

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-29277
Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: 05.10.12.0042 Snow Ridge: Trunk Graneville DE: 05.05.15.0038 Grangeville DE NS: 05.27.26.0023 Bakerville: 05.21.51.0026 Idaville: 05.44.27.0030 Whiskey Lake: Trunk Comet Lake-S: Trunk Tiger Lake H/UP3: 05.43.12.0052 Alder Lake: 05.44.23.0047 Gemini Lake: Not Affected Apollo Lake: Not Affected Elkhart Lake: 05.44.30.0018 AMD ROME: trunk MILAN: 05.36.10.0017 GENOA: 05.52.25.0006 Snowy Owl: Trunk R1000: 05.32.50.0018 R2000: 05.44.30.0005 V2000: Trunk V3000: 05.44.30.0007 Ryzen 5000: 05.44.30.0004 Embedded ROME: Trunk Embedded MILAN: Trunk Hygon Hygon #1/#2: 05.36.26.0016 Hygon #3: 05.44.26.0007 https://www.insyde.com/security-pledge/SA-2022060

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.0 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://www.insyde.com/security-pledge Vendor Advisory
https://www.insyde.com/security-pledge/SA-2022060 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:amd:genoa_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:genoa:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:amd:hygon_1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:hygon_1:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:amd:hygon_2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:hygon_2:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:amd:hygon_3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:hygon_3:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:amd:milan_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:milan:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:amd:milan_firmware:*:*:*:*:embedded:*:*:*
cpe:2.3:h:amd:milan:-:*:*:*:embedded:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:amd:rome_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:rome:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:amd:rome_firmware:*:*:*:*:embedded:*:*:*
cpe:2.3:h:amd:rome:-:*:*:*:embedded:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:amd:ryzen_5300g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5300g:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:amd:ryzen_5300ge_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5300ge:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:amd:ryzen_5600g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5600g:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:amd:ryzen_5600ge_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5600ge:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:amd:ryzen_5600x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5600x:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:amd:ryzen_5700g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5700g:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:amd:ryzen_5700ge_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5700ge:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:amd:ryzen_5800x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5800x:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:amd:ryzen_5800x3d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5800x3d:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:amd:ryzen_5900x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5900x:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:amd:ryzen_5950x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5950x:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:amd:snowy_owl_r1000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_r1000:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:amd:snowy_owl_r2000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_r2000:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:amd:snowy_owl_v2000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_v2000:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:amd:snowy_owl_v3000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_v3000:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:intel:alder_lake_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:alder_lake:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:intel:bakerville_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:bakerville:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:intel:cedar_island_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:cedar_island:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:intel:idaville_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:idaville:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:intel:comet_lake-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:comet_lake-s:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:intel:tiger_lake_h\/up3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:tiger_lake_h\/up3:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:intel:whiskey_lake_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:whiskey_lake:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:intel:denverton_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:denverton:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:intel:eagle_stream_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:eagle_stream:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:intel:grangeville_de_ns_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:grangeville_de_ns:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:intel:granville_de_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:granville_de:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:intel:greenlow_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:greenlow:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:intel:greenlow-r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:greenlow-r:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:intel:mehlow_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:mehlow:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:intel:mehlow-r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:mehlow-r:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:intel:tatlow_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:tatlow:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:intel:purley-r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:purley-r:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:intel:whitley_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:whitley:-:*:*:*:*:*:*:*
History

22 Nov 2022, 19:45

Type Values Removed Values Added
References (MISC) https://www.insyde.com/security-pledge/SA-2022060 - (MISC) https://www.insyde.com/security-pledge/SA-2022060 - Vendor Advisory
References (MISC) https://www.insyde.com/security-pledge - (MISC) https://www.insyde.com/security-pledge - Vendor Advisory
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 8.8
First Time Amd snowy Owl V2000
Amd ryzen 5600g Firmware
Amd genoa Firmware
Amd ryzen 5800x Firmware
Intel idaville Firmware
Amd ryzen 5300g Firmware
Intel alder Lake
Intel eagle Stream
Amd ryzen 5800x3d Firmware
Amd ryzen 5600g
Intel purley-r Firmware
Amd rome Firmware
Intel idaville
Intel grangeville De Ns
Amd hygon 2
Intel cedar Island Firmware
Amd ryzen 5950x Firmware
Amd ryzen 5600x Firmware
Amd ryzen 5600x
Intel denverton
Amd ryzen 5300g
Amd snowy Owl V2000 Firmware
Amd ryzen 5600ge
Intel
Amd ryzen 5300ge Firmware
Amd
Intel denverton Firmware
Amd ryzen 5300ge
Intel greenlow Firmware
Amd hygon 1
Intel bakerville Firmware
Intel whiskey Lake
Amd genoa
Intel eagle Stream Firmware
Amd milan Firmware
Intel tatlow Firmware
Intel grangeville De Ns Firmware
Amd snowy Owl R2000
Intel alder Lake Firmware
Intel tatlow
Amd ryzen 5800x3d
Amd ryzen 5600ge Firmware
Intel greenlow-r
Intel bakerville
Amd hygon 1 Firmware
Intel mehlow-r
Amd ryzen 5700ge
Intel granville De Firmware
Intel greenlow-r Firmware
Intel tiger Lake H\/up3
Amd snowy Owl V3000
Intel mehlow
Amd hygon 3 Firmware
Intel mehlow Firmware
Intel comet Lake-s Firmware
Amd snowy Owl V3000 Firmware
Amd rome
Intel purley-r
Intel whitley Firmware
Amd snowy Owl R1000
Intel whiskey Lake Firmware
Intel tiger Lake H\/up3 Firmware
Amd ryzen 5900x Firmware
Amd snowy Owl R2000 Firmware
Amd milan
Amd ryzen 5800x
Intel greenlow
Intel granville De
Amd ryzen 5700g
Amd hygon 3
Amd ryzen 5700g Firmware
Amd ryzen 5950x
Amd snowy Owl R1000 Firmware
Amd ryzen 5900x
Intel mehlow-r Firmware
Intel whitley
Intel cedar Island
Amd hygon 2 Firmware
Intel comet Lake-s
Amd ryzen 5700ge Firmware
CWE CWE-787
CPE cpe:2.3:o:amd:ryzen_5900x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:milan:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:hygon_1:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:snowy_owl_v2000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:tiger_lake_h\/up3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_r2000:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5800x3d:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5300ge_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:greenlow-r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_v2000:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:hygon_2:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5950x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:hygon_3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:purley-r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:milan_firmware:*:*:*:*:embedded:*:*:*
cpe:2.3:o:intel:alder_lake_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:granville_de_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:tiger_lake_h\/up3:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:hygon_1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:milan:-:*:*:*:embedded:*:*:*
cpe:2.3:h:intel:eagle_stream:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5600x:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5300ge:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:mehlow:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:idaville:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:genoa:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5600x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:snowy_owl_r1000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5300g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5800x:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:comet_lake-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:greenlow:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:genoa_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5300g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:comet_lake-s:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_r1000:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:hygon_2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:snowy_owl_v3000:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:hygon_3:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:whiskey_lake:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:mehlow-r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:bakerville:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:snowy_owl_v3000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:eagle_stream_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5800x3d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:rome_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:cedar_island:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:granville_de:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:rome_firmware:*:*:*:*:embedded:*:*:*
cpe:2.3:o:intel:grangeville_de_ns_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:mehlow-r:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:rome:-:*:*:*:embedded:*:*:*
cpe:2.3:h:intel:denverton:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:grangeville_de_ns:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:rome:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:idaville_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5800x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:greenlow-r:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5700g:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5600g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5600g:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5600ge_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:mehlow_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:whitley:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5700ge:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:cedar_island_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5600ge:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:tatlow:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:alder_lake:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:snowy_owl_r2000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:whitley_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:denverton_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:bakerville_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:whiskey_lake_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:milan_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5700ge_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:greenlow_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5900x:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:tatlow_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5950x:-:*:*:*:*:*:*:*
cpe:2.3:o:amd:ryzen_5700g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:purley-r:-:*:*:*:*:*:*:*

16 Nov 2022, 00:09

Type Values Removed Values Added
New CVE
Information

Published : 2022-11-15 22:15

Updated : 2023-12-10 14:35

NVD link : CVE-2022-29277

Mitre link : CVE-2022-29277

CVE.ORG link : CVE-2022-29277

JSON object : View

Products Affected

intel

  • mehlow-r_firmware
  • purley-r_firmware
  • idaville_firmware
  • tatlow_firmware
  • eagle_stream_firmware
  • cedar_island
  • bakerville_firmware
  • eagle_stream
  • comet_lake-s
  • grangeville_de_ns_firmware
  • granville_de_firmware
  • mehlow_firmware
  • tatlow
  • cedar_island_firmware
  • whiskey_lake_firmware
  • greenlow
  • alder_lake_firmware
  • alder_lake
  • denverton_firmware
  • whiskey_lake
  • greenlow-r_firmware
  • tiger_lake_h\/up3
  • mehlow-r
  • comet_lake-s_firmware
  • mehlow
  • denverton
  • greenlow-r
  • idaville
  • bakerville
  • whitley_firmware
  • grangeville_de_ns
  • purley-r
  • granville_de
  • whitley
  • greenlow_firmware
  • tiger_lake_h\/up3_firmware

amd

  • milan
  • ryzen_5700ge
  • ryzen_5300g
  • ryzen_5900x_firmware
  • ryzen_5700g_firmware
  • hygon_3
  • hygon_2
  • ryzen_5800x
  • snowy_owl_v2000
  • ryzen_5700ge_firmware
  • snowy_owl_v3000_firmware
  • rome_firmware
  • milan_firmware
  • ryzen_5300g_firmware
  • snowy_owl_r2000
  • rome
  • ryzen_5900x
  • ryzen_5800x3d
  • ryzen_5600ge_firmware
  • ryzen_5300ge_firmware
  • snowy_owl_r2000_firmware
  • ryzen_5600ge
  • ryzen_5950x_firmware
  • snowy_owl_r1000_firmware
  • ryzen_5950x
  • snowy_owl_v3000
  • ryzen_5300ge
  • genoa
  • hygon_1
  • snowy_owl_r1000
  • hygon_1_firmware
  • ryzen_5800x_firmware
  • ryzen_5800x3d_firmware
  • ryzen_5700g
  • ryzen_5600x_firmware
  • snowy_owl_v2000_firmware
  • ryzen_5600g
  • ryzen_5600g_firmware
  • hygon_2_firmware
  • genoa_firmware
  • hygon_3_firmware
  • ryzen_5600x
CWE
CWE-787

Out-of-bounds Write