CVE-2022-38696

CVSS 9.8 CRITICALEPSS 0.8%CWE-119

In short

A memory buffer overflow vulnerability exists in BootRom due to missing validation of payload size. An attacker can exploit this without special privileges, potentially causing system crash or unauthorized code execution during the boot process.

Technical detail

BootRom fails to validate payload size before writing to a fixed buffer, enabling stack/heap buffer overflow (CWE-119). Exploitation requires ability to supply a malicious payload during boot, with no privilege escalation needed; impact includes arbitrary code execution or denial of service.

Summary generated and translated by AI from the official description.

In BootRom, there's a possible missing payload size check. This could lead to memory buffer overflow without requiring additional execution privileges.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Unisoc (Shanghai) Technologies Co., Ltd. · SC9863A/T310/T610/T618/T606/T612/T616/T760/T770/T820/S8000/T750/T765

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.nccgroup.com/research-blog/there-s-another-hole-in-your-soc-unisoc-rom-vulnerabilities/