CVE-2022-30426: There is a stack buffer overflow vulnerability, which could lead to arbitrary code execution in UEFI DXE driver on some Acer products. An attack could...

Description

There is a stack buffer overflow vulnerability, which could lead to arbitrary code execution in UEFI DXE driver on some Acer products. An attack could exploit this vulnerability to escalate privilege from ring 3 to ring 0, and hijack control flow during UEFI DXE execution. This affects Altos T110 F3 firmware version <= P13 (latest) and AP130 F2 firmware version <= P04 (latest) and Aspire 1600X firmware version <= P11.A3L (latest) and Aspire 1602M firmware version <= P11.A3L (latest) and Aspire 7600U firmware version <= P11.A4 (latest) and Aspire MC605 firmware version <= P11.A4L (latest) and Aspire TC-105 firmware version <= P12.B0L (latest) and Aspire TC-120 firmware version <= P11-A4 (latest) and Aspire U5-620 firmware version <= P11.A1 (latest) and Aspire X1935 firmware version <= P11.A3L (latest) and Aspire X3475 firmware version <= P11.A3L (latest) and Aspire X3995 firmware version <= P11.A3L (latest) and Aspire XC100 firmware version <= P11.B3 (latest) and Aspire XC600 firmware version <= P11.A4 (latest) and Aspire Z3-615 firmware version <= P11.A2L (latest) and Veriton E430G firmware version <= P21.A1 (latest) and Veriton B630_49 firmware version <= AAP02SR (latest) and Veriton E430 firmware version <= P11.A4 (latest) and Veriton M2110G firmware version <= P21.A3 (latest) and Veriton M2120G fir.

Metrics

CVSS 3.1

7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

0.41%

33.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Acer	Altos T110 F3 Firmware	< p13
Acer	Ap130 F2 Firmware	< p04
Acer	Aspire 1600x Firmware	< p11.a3l
Acer	Aspire 1602m Firmware	< p11.a3l
Acer	Aspire 7600u Firmware	< p11.a4
Acer	Aspire Mc605 Firmware	< p11.a4l
Acer	Aspire Tc-105 Firmware	< p12.b0l
Acer	Aspire Tc-120 Firmware	< p11-a4
Acer	Aspire U5-620 Firmware	< p11.a1
Acer	Aspire X1935 Firmware	< p11.a3l
Acer	Aspire X3475 Firmware	< p11.a3l
Acer	Aspire X3995 Firmware	< p11.a3l
Acer	Aspire Xc100 Firmware	< p11.b3
Acer	Aspire Xc600 Firmware	< p11.a4
Acer	Aspire Z3-615 Firmware	< p11.a2l
Acer	Veriton B630 49 Firmware	< aap02sr
Acer	Veriton E430g Firmware	< p21.a1
Acer	Veriton E430 Firmware	< p11.a4
Acer	Veriton M2110g Firmware	< p21.a3
Acer	Veriton M2120g Firmware	< p11-a3
Acer	Veriton M2611g Firmware	< p11-b0l
Acer	Veriton M2611 Firmware	< p11.b0
Acer	Veriton M4620 Firmware	< p21.a3
Acer	Veriton M4620g Firmware	< p21.a3
Acer	Veriton M6620g Firmware	< p21.a0
Acer	Veriton N2620g Firmware	< p21.b0
Acer	Veriton N4620g Firmware	< p11.a2l
Acer	Veriton N4630g Firmware	< p21.b0
Acer	Veriton S6620g Firmware	< p11.a1
Acer	Veriton X2611g Firmware	< p11.a4
Acer	Veriton X2611 Firmware	< p11.a4
Acer	Veriton X4620g Firmware	< p11.a3
Acer	Veriton X6620g Firmware	< p11.a3
Acer	Veriton Z2650g Firmware	< p21.a1

References

http://acer.comVendor Advisory
http://altos.comBroken Link
https://github.com/10TG/vulnerabilities/blob/main/Acer/CVE-2022-30426/CVE-2022-30426.mdExploit, Third Party Advisory
http://acer.comVendor Advisory
http://altos.comBroken Link
https://github.com/10TG/vulnerabilities/blob/main/Acer/CVE-2022-30426/CVE-2022-30426.mdExploit, Third Party Advisory

Timeline

Published: Sep 23, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2022-30426?

There is a stack buffer overflow vulnerability, which could lead to arbitrary code execution in UEFI DXE driver on some Acer products. An attack could exploit this vulnerability to escalate privilege from ring 3 to ring 0, and hijack control flow during UEFI DXE execution. This affects Altos T110 F3 firmware version <= P13 (latest) and AP130 F2 firmware version <= P04 (latest) and Aspire 1600X firmware version <= P11.A3L (latest) and Aspire 1602M firmware version <= P11.A3L (latest) and Aspire 7600U firmware version <= P11.A4 (latest) and Aspire MC605 firmware version <= P11.A4L (latest) and Aspire TC-105 firmware version <= P12.B0L (latest) and Aspire TC-120 firmware version <= P11-A4 (latest) and Aspire U5-620 firmware version <= P11.A1 (latest) and Aspire X1935 firmware version <= P11.A3L (latest) and Aspire X3475 firmware version <= P11.A3L (latest) and Aspire X3995 firmware version <= P11.A3L (latest) and Aspire XC100 firmware version <= P11.B3 (latest) and Aspire XC600 firmware version <= P11.A4 (latest) and Aspire Z3-615 firmware version <= P11.A2L (latest) and Veriton E430G firmware version <= P21.A1 (latest) and Veriton B630_49 firmware version <= AAP02SR (latest) and Veriton E430 firmware version <= P11.A4 (latest) and Veriton M2110G firmware version <= P21.A3 (latest) and Veriton M2120G fir.

How severe is CVE-2022-30426?

CVE-2022-30426 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 0.41% probability of exploitation in the next 30 days.

How do I fix CVE-2022-30426?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.