Publication Date: |
|
Last Update: |
|
Current Version: | V1.1 |
CVSS v3.1 Base Score: | 7.0 |
Affected Product and Versions | Remediation |
---|---|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
All BIOS versions < V1.0.212N |
Update BIOS to V1.0.212N or later version
|
Product-specific remediations or mitigations can be found in the section
Affected Products and Solution.
Please follow the General Security Recommendations.
As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
The vulnerability classification has been performed by using the CVSS scoring system in version 3.1 (CVSS v3.1) (https://www.first.org/cvss/). The CVSS environmental score is specific to the customer’s environment and will impact the overall CVSS score. The environmental score should therefore be individually defined by the customer to accomplish final scoring.
An additional classification has been performed using the CWE classification, a community-developed list of common software security weaknesses. This serves as a common language and as a baseline for weakness identification, mitigation, and prevention efforts. A detailed list of CWE classes can be found at: https://cwe.mitre.org/.
CVSS v3.1 Base Score | 6.4 |
CVSS Vector | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C |
CWE | CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition |
Update description and links DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption through a TOCTOU attack. This issue was discovered by Insyde engineering based on the general description provided by Intel's iSTARE group. https://www.insyde.com/security-pledge/SA-2022044
CVSS v3.1 Base Score | 6.4 |
CVSS Vector | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C |
CWE | CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition |
DMA transactions which are targeted at input buffers used for the FwBlockServiceSmm software SMI handler could cause SMRAM corruption through a TOCTOU attack. This issue was discovered by Insyde engineering based on the general description provided by Intel's iSTARE group. https://www.insyde.com/security-pledge/SA-2022048
CVSS v3.1 Base Score | 6.4 |
CVSS Vector | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C |
CWE | CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition |
DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI handler could cause SMRAM corruption through a TOCTOU attack. This issue was discovered by Insyde engineering based on the general description provided by Intel's iSTARE group. https://www.insyde.com/security-pledge/SA-2022050
CVSS v3.1 Base Score | 7.0 |
CVSS Vector | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C |
CWE | CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition |
DMA attacks on the parameter buffer used by the Int15ServiceSmm software SMI handler could lead to a TOCTOU attack on the SMI handler and lead to corruption of SMRAM. This issue was discovered by Insyde engineering during a security review.
CVSS v3.1 Base Score | 6.4 |
CVSS Vector | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C |
CWE | CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition |
DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI handler could cause SMRAM corruption through a TOCTOU attack. This issue was discovered by Insyde engineering based on the general description provided by Intel's iSTARE group. https://www.insyde.com/security-pledge/SA-2022054
CVSS v3.1 Base Score | 7.0 |
CVSS Vector | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C |
CWE | CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition |
V1.0 (2023-02-14): | Publication Date |
V1.1 (2023-09-12): | Added remediation for affected products and removed CVE-2022-33907 as the products are not affected |