CVE-2022-29277

Name: CVE-2022-29277
Creator: NVD / NIST
Published: 2022-11-15T22:15:10.933+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10EPSS 0.19%

Last modified Jun 17, 2026

CVE-2022-29277 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: 05.10.12.0042 Snow Ridge: Trunk Graneville DE: 05.05.15.0038 Grangeville DE NS: 05.27.26.0023 Bakerville: 05.21.51.0026 Idaville: 05.44.27.0030 Whiskey Lake: Trunk Comet Lake-S: Trunk Tiger Lake H/UP3: 05.43.12.0052 Alder Lake: 05.44.23.0047 Gemini Lake: Not Affected Apollo Lake: Not Affected Elkhart Lake: 05.44.30.0018 AMD ROME: trunk MILAN: 05.36.10.0017 GENOA: 05.52.25.0006 Snowy Owl: Trunk R1000: 05.32.50.0018 R2000: 05.44.30.0005 V2000: Trunk V3000: 05.44.30.0007 Ryzen 5000: 05.44.30.0004 Embedded ROME: Trunk Embedded MILAN: Trunk Hygon Hygon #1/#2: 05.36.26.0016 Hygon #3: 05.44.26.0007 https://www.insyde.com/security-pledge/SA-2022060. EPSS estimates a 0.19% chance of exploitation in the next 30 days.

Description

Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton: 05.10.12.0042 Snow Ridge: Trunk Graneville DE: 05.05.15.0038 Grangeville DE NS: 05.27.26.0023 Bakerville: 05.21.51.0026 Idaville: 05.44.27.0030 Whiskey Lake: Trunk Comet Lake-S: Trunk Tiger Lake H/UP3: 05.43.12.0052 Alder Lake: 05.44.23.0047 Gemini Lake: Not Affected Apollo Lake: Not Affected Elkhart Lake: 05.44.30.0018 AMD ROME: trunk MILAN: 05.36.10.0017 GENOA: 05.52.25.0006 Snowy Owl: Trunk R1000: 05.32.50.0018 R2000: 05.44.30.0005 V2000: Trunk V3000: 05.44.30.0007 Ryzen 5000: 05.44.30.0004 Embedded ROME: Trunk Embedded MILAN: Trunk Hygon Hygon #1/#2: 05.36.26.0016 Hygon #3: 05.44.26.0007 https://www.insyde.com/security-pledge/SA-2022060

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

EPSS Probability

0.19%

9.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Amd	Genoa Firmware	< 05.52.25.0006
Amd	Hygon 1 Firmware	< 05.36.26.0016
Amd	Hygon 2 Firmware	< 05.36.26.0016
Amd	Hygon 3 Firmware	< 05.44.26.0007
Amd	Milan Firmware	< 05.36.10.0017
Amd	Milan Firmware	< 05.36.26.0016
Amd	Rome Firmware	< 05.36.10.0017
Amd	Rome Firmware	< 05.36.26.0016
Amd	Ryzen 5300g Firmware	< 05.44.30.0004
Amd	Ryzen 5300ge Firmware	< 05.44.30.0004
Amd	Ryzen 5600g Firmware	< 05.44.30.0004
Amd	Ryzen 5600ge Firmware	< 05.44.30.0004
Amd	Ryzen 5600x Firmware	< 05.44.30.0004
Amd	Ryzen 5700g Firmware	< 05.44.30.0004
Amd	Ryzen 5700ge Firmware	< 05.44.30.0004
Amd	Ryzen 5800x Firmware	< 05.44.30.0004
Amd	Ryzen 5800x3d Firmware	< 05.44.30.0004
Amd	Ryzen 5900x Firmware	< 05.44.30.0004
Amd	Ryzen 5950x Firmware	< 05.44.30.0004
Amd	Snowy Owl R1000 Firmware	< 05.32.50.0018
Amd	Snowy Owl R2000 Firmware	< 05.44.30.0005
Amd	Snowy Owl V2000 Firmware	< 05.44.30.0007
Amd	Snowy Owl V3000 Firmware	< 05.44.30.0007
Intel	Alder Lake Firmware	< 05.44.23.0047
Intel	Bakerville Firmware	< 05.21.51.0026
Intel	Cedar Island Firmware	< 05.42.11.0021
Intel	Idaville Firmware	< 05.43.12.0052
Intel	Comet Lake-S Firmware	< 05.43.12.0052
Intel	Tiger Lake H\/Up3 Firmware	< 05.43.12.0052
Intel	Whiskey Lake Firmware	< 05.43.12.0052
Intel	Denverton Firmware	< 05.10.12.0042
Intel	Eagle Stream Firmware	< 05.44.25.0052
Intel	Grangeville De Ns Firmware	< 05.27.26.0023
Intel	Granville De Firmware	< 05.05.15.0038
Intel	Greenlow Firmware	< 05.10.12.0042
Intel	Greenlow-R Firmware	< 05.10.12.0042
Intel	Mehlow Firmware	< 05.10.12.0042
Intel	Mehlow-R Firmware	< 05.10.12.0042
Intel	Tatlow Firmware	< 05.10.12.0042
Intel	Purley-R Firmware	< 05.21.51.0048
Intel	Whitley Firmware	< 05.42.23.0066

References

https://www.insyde.com/security-pledgeVendor Advisory
https://www.insyde.com/security-pledge/SA-2022060Vendor Advisory
https://www.insyde.com/security-pledgeVendor Advisory
https://www.insyde.com/security-pledge/SA-2022060Vendor Advisory

Timeline

Published: Nov 15, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2022-29277?

How severe is CVE-2022-29277?

CVE-2022-29277 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 0.19% probability of exploitation in the next 30 days.

How do I fix CVE-2022-29277?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-29277?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST