• CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: Whitley: Cedar Island: Eagle Stream: Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: Snow Ridge: Trunk Graneville DE: Grangeville DE NS: Bakerville: Idaville: Whiskey Lake: Trunk Comet Lake-S: Trunk Tiger Lake H/UP3: Alder Lake: Gemini Lake: Not Affected Apollo Lake: Not Affected Elkhart Lake: AMD ROME: trunk MILAN: GENOA: Snowy Owl: Trunk R1000: R2000: V2000: Trunk V3000: Ryzen 5000: Embedded ROME: Trunk Embedded MILAN: Trunk Hygon Hygon #1/#2: Hygon #3:
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Assigning CNA
MITRE Corporation
Date Record Created
20220415 Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20220415)
Votes (Legacy)
Comments (Legacy)
Proposed (Legacy)
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.