What is CVE-2022-40246?

CVE-2022-40246 is a vulnerability that allows a potential attacker to write one byte to an arbitrary address during the PEI phase, only during S3 resume boot mode, which can lead to bypassing mitigations, disclosing physical memory contents, and discovering secrets from virtual machines.

What software is affected by CVE-2022-40246?

The Intel Nuc M15 Laptop Kit Lapbc510 Firmware version 0072 and Intel Nuc M15 Laptop Kit Lapbc710 Firmware version 0072 are affected by CVE-2022-40246.

What is the severity of CVE-2022-40246?

CVE-2022-40246 has a severity rating of 7.2 (high).

How can CVE-2022-40246 be exploited?

An attacker can exploit CVE-2022-40246 by writing one byte to an arbitrary address during the PEI phase, specifically during S3 resume boot mode.

Are there any references related to CVE-2022-40246?

Yes, you can find more information about CVE-2022-40246 at the AMI Security Center (https://www.ami.com/security-center/) and the Binarly Advisory (https://www.binarly.io/advisories/BRLY-2022-014).

Vulnerability/
CVE-2022-40246

high

7.2

CWE

787 123

20/9/2022

17/9/2024

CVE-2022-40246: Arbitrary write vulnerability in SbPei module leads to arbitrary code execution during PEI phase.

First published: Tue Sep 20 2022(Updated: )

A potential attacker can write one byte by arbitrary address at the time of the PEI phase (only during S3 resume boot mode) and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines (VMs) and bypassing memory isolation and confidential computing boundaries. Additionally, an attacker can build a payload which can be injected into the SMRAM memory. This issue affects: Module name: SbPei SHA256: d827182e5f9b7a9ff0b9d3e232f7cfac43b5237e2681e11f005be627a49283a9 Module GUID: c1fbd624-27ea-40d1-aa48-94c3dc5c7e0d

Credit: cret@cert.org

Affected Software	Affected Version	How to fix
Intel Nuc M15 Laptop Kit Lapbc510 Firmware	=0072
Intel Nuc M15 Laptop Kit Lapbc510
Intel Nuc M15 Laptop Kit Lapbc710 Firmware	=0072
Intel Nuc M15 Laptop Kit Lapbc710

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2022-40246?
CVE-2022-40246 is a vulnerability that allows a potential attacker to write one byte to an arbitrary address during the PEI phase, only during S3 resume boot mode, which can lead to bypassing mitigations, disclosing physical memory contents, and discovering secrets from virtual machines.
What software is affected by CVE-2022-40246?
The Intel Nuc M15 Laptop Kit Lapbc510 Firmware version 0072 and Intel Nuc M15 Laptop Kit Lapbc710 Firmware version 0072 are affected by CVE-2022-40246.
What is the severity of CVE-2022-40246?
CVE-2022-40246 has a severity rating of 7.2 (high).
How can CVE-2022-40246 be exploited?
An attacker can exploit CVE-2022-40246 by writing one byte to an arbitrary address during the PEI phase, specifically during S3 resume boot mode.
Are there any references related to CVE-2022-40246?
Yes, you can find more information about CVE-2022-40246 at the AMI Security Center (https://www.ami.com/security-center/) and the Binarly Advisory (https://www.binarly.io/advisories/BRLY-2022-014).

collector/nvd-index
agent/weakness
agent/type
agent/references
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/title
agent/last-modified-date
agent/description
agent/event
agent/first-publish-date
agent/tags
vendor/intel
canonical/intel nuc m15 laptop kit lapbc510 firmware
version/intel nuc m15 laptop kit lapbc510 firmware/0072
canonical/intel nuc m15 laptop kit lapbc510
canonical/intel nuc m15 laptop kit lapbc710 firmware
version/intel nuc m15 laptop kit lapbc710 firmware/0072
canonical/intel nuc m15 laptop kit lapbc710

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.