CVE-2022-28806

Name of the Vulnerable Software and Affected Versions Fujitsu LIEFBOOK devices (A3510, U9310, U7511/U7411/U7311, U9311, E5510/E5410, U7510/U7410/U7310, E459/E449) versions prior to v1.09 (A3510), v2.17 (U9310), v2.30 (U7511/U7411/U7311), v2.33 (U9311), v2.23 (E5510), v2.19 (U7510/U7410), v2.13 (U7310), and v1.09 (E459/E449)

Description An issue was discovered in the FjGabiFlashCoreAbstractionSmm driver, which registers a Software System Management Interrupt (SWSMI) handler that is not sufficiently validated. This allows a potential attacker to write fixed data to SMRAM, leading to data corruption inside this memory, such as changing the SMI handler's code or modifying SMRAM map structures to break input pointer validation for other SMI handlers. As a result, the attacker could elevate privileges from ring 0 to ring -2 and execute arbitrary code in SMM.

Recommendations For Fujitsu LIEFBOOK devices (A3510), update to BIOS version v1.09 or later. For Fujitsu LIEFBOOK devices (U9310), update to BIOS version v2.17 or later. For Fujitsu LIEFBOOK devices (U7511/U7411/U7311), update to BIOS version v2.30 or later. For Fujitsu LIEFBOOK devices (U9311), update to BIOS version v2.33 or later. For Fujitsu LIEFBOOK devices (E5510/E5410), update to BIOS version v2.23 or later. For Fujitsu LIEFBOOK devices (U7510/U7410/U7310), update to BIOS version v2.19 (U7510/U7410) or v2.13 (U7310) or later. For Fujitsu LIEFBOOK devices (E459/E449), update to BIOS version v1.09 or later.