Multiple race conditions due to TOCTOU flaws in various UEFI Implementations

🗓️ 08 Nov 2022 00:00:00Reported by CERTType

Multiple UEFI Implementations Vulnerable to RingHopper Attacks: UEFI implementations vulnerable to code execution in SMM due to TOCTOU flaws may lead to DMA timing attacks, enabling attacker privileges

Reporter	Title	Published	Views	Family All 12
CNNVD	Intel NUC 安全漏洞	11 Nov 202200:00	–	cnnvd
CVE	CVE-2021-33164	11 Nov 202215:48	–	cve
Cvelist	CVE-2021-33164	11 Nov 202215:48	–	cvelist
EUVD	EUVD-2021-19879	7 Oct 202500:30	–	euvd
F5 Networks	K51494034: Intel NUC BIOS firmware vulnerability CVE-2021-33164	21 Feb 202319:00	–	f5
Intel	Intel® NUC Firmware Advisory	16 Feb 202300:00	–	intel
NVD	CVE-2021-33164	11 Nov 202216:15	–	nvd
OSV	CVE-2021-33164	11 Nov 202216:15	–	osv
Prion	Improper access control	11 Nov 202216:15	–	prion
Positive Technologies	PT-2022-5394 · Intel · Intel Nuc	8 Nov 202200:00	–	ptsecurity

Source	Link
edk2-docs	www.edk2-docs.gitbook.io/edk-ii-secure-coding-guide/secure_coding_guidelines_general
edk2-docs	www.edk2-docs.gitbook.io/a-tour-beyond-bios-memory-protection-in-uefi-bios/memory-protection-in-smm
eclypsium	www.eclypsium.com/2020/01/30/direct-memory-access-attacks/
intel	www.intel.com/content/dam/develop/external/us/en/documents/intel-whitepaper-using-iommu-for-dma-protection-in-uefi-820238.pdf
blog	www.blog.cr4.sh/2015/09/breaking-uefi-security-with-software.html
sentinelone	www.sentinelone.com/labs/another-brick-in-the-wall-uncovering-smm-vulnerabilities-in-hp-firmware/
fwupd	www.fwupd.org/lvfs/docs/users
jvn	www.jvn.jp/vu/JVNVU96604488/

06 May 2024 18:18Current

7.8High risk

Vulners AI Score7.8

CVSS 3.16.7 - 8.2

EPSS0.00112

SSVC