CVE-2022-38692
CVE-2022-38692
In short
BootROM fails to properly validate the size of RSA keys in certificates, allowing an attacker to overflow memory buffers during the boot process. This critical vulnerability can lead to complete system compromise without needing special privileges.
Technical detail
A missing size validation in BootROM's Certificate Type 0 handler permits heap or stack buffer overflow via oversized RSA keys. The vulnerability is exploitable during the boot authentication phase with a maliciously crafted certificate; successful exploitation can achieve arbitrary code execution in the boot context.
Summary generated and translated by AI from the official description.
In BootROM, there is a missing size check for RSA keys in Certificate Type 0 validation. This could lead to memory buffer overflow without requiring additional execution privileges.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Unisoc (Shanghai) Technologies Co., Ltd. · SC9863A/T310/T610/T618/T606/T612/T616/T760/T770/T820/S8000/Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →