CVE-2022-23821

Q: What is the severity of CVE-2022-23821?

CVE-2022-23821 has a CVSS score of 9.8 (CRITICAL). This vulnerability allows attackers with local access to bypass System Management Mode (SMM) protections and write to SPI ROM, potentially leading to arbitrary code execution with high privileges. It affects AMD processors with specific firmware versions. Attackers could gain persistent control over affected systems.

9.8 CRITICAL

📋 TL;DR

This vulnerability allows attackers with local access to bypass System Management Mode (SMM) protections and write to SPI ROM, potentially leading to arbitrary code execution with high privileges. It affects AMD processors with specific firmware versions. Attackers could gain persistent control over affected systems.

💻 Affected Systems

Products:

AMD processors with affected firmware

Versions: Specific firmware versions as listed in AMD advisories

Operating Systems: All operating systems running on affected hardware

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability is in processor firmware, affecting all OSes. Check AMD advisories for specific processor models and firmware versions.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with persistent firmware-level malware that survives OS reinstallation and disk replacement, enabling long-term espionage or destruction.

🟠

Likely Case

Local privilege escalation allowing attackers to bypass security controls, install rootkits, or steal sensitive data from protected memory regions.

🟢

If Mitigated

Limited impact if proper access controls and firmware protections are in place, though risk remains for physical access scenarios.

🌐 Internet-Facing: LOW - Requires local access to system, not directly exploitable over network.

🏢 Internal Only: HIGH - Malicious insiders or compromised accounts with local access could exploit this for privilege escalation and persistence.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploitation requires local access and deep knowledge of SMM/SPI ROM. No public exploits known as of analysis date.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware updates specified in AMD-SB-4002 and AMD-SB-5001

Vendor Advisory: https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002

Restart Required: Yes

Instructions:

1. Identify AMD processor model and current firmware version. 2. Check AMD advisories for affected status. 3. Download appropriate firmware update from motherboard/system manufacturer. 4. Apply firmware update following manufacturer instructions. 5. Reboot system to activate new firmware.

🔧 Temporary Workarounds

Physical Security Controls

all

Restrict physical access to systems to prevent local exploitation

Privilege Access Management

all

Implement strict controls on local administrative access

🧯 If You Can't Patch

Isolate affected systems in secure network segments
Implement strict physical security controls and access monitoring

🔍 How to Verify

Check if Vulnerable:

Check system BIOS/UEFI firmware version and compare against AMD advisory lists. Use manufacturer-specific tools to identify firmware version.

Check Version:

Manufacturer-specific commands vary. Common: Windows: wmic bios get smbiosbiosversion, Linux: dmidecode -t bios

Verify Fix Applied:

Verify firmware version after update matches patched versions in AMD advisories. Confirm no unauthorized SPI ROM modifications.

📡 Detection & Monitoring

Log Indicators:

Unexpected firmware update attempts
Unauthorized SMM access attempts
SPI ROM write operations

Network Indicators:

None - local exploitation only

SIEM Query:

Search for firmware modification events, unauthorized local access patterns, or SMM-related security alerts

📊 Metadata

CVE ID: CVE-2022-23821

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Published: November 14, 2023

Last Updated: November 21, 2024

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Athlon 3015ce Firmware by Amd

Athlon 3015e Firmware by Amd

Ryzen 3 3100 Firmware by Amd

Ryzen 3 3100 Firmware by Amd

Ryzen 3 3200u Firmware by Amd

Ryzen 3 3250c Firmware by Amd

Ryzen 3 3250u Firmware by Amd

Ryzen 3 3300u Firmware by Amd

Ryzen 3 3300x Firmware by Amd

Ryzen 3 3300x Firmware by Amd

Ryzen 3 3350u Firmware by Amd

Ryzen 3 4300u Firmware by Amd

Ryzen 3 5100 Firmware by Amd

Ryzen 3 5125c Firmware by Amd

Ryzen 3 5400u Firmware by Amd

Ryzen 3 5425u Firmware by Amd

Ryzen 3 7335u Firmware by Amd

Ryzen 5 3450u Firmware by Amd

Ryzen 5 3500 Firmware by Amd

Ryzen 5 3500 Firmware by Amd

Ryzen 5 3500c Firmware by Amd

Ryzen 5 3500u Firmware by Amd

Ryzen 5 3500x Firmware by Amd

Ryzen 5 3500x Firmware by Amd

Ryzen 5 3550h Firmware by Amd

Ryzen 5 3580u Firmware by Amd

Ryzen 5 3600 Firmware by Amd

Ryzen 5 3600 Firmware by Amd

Ryzen 5 3600x Firmware by Amd

Ryzen 5 3600x Firmware by Amd

Ryzen 5 3600xt Firmware by Amd

Ryzen 5 3600xt Firmware by Amd

Ryzen 5 4500u Firmware by Amd

Ryzen 5 4600h Firmware by Amd

Ryzen 5 4600hs Firmware by Amd

Ryzen 5 4600u Firmware by Amd

Ryzen 5 4680u Firmware by Amd

Ryzen 5 5500 Firmware by Amd

Ryzen 5 5500 Firmware by Amd

Ryzen 5 55003xd Firmware by Amd

Ryzen 5 5500h Firmware by Amd

Ryzen 5 5500x Firmware by Amd

Ryzen 5 5560u Firmware by Amd

Ryzen 5 5600 Firmware by Amd

Ryzen 5 56003xd Firmware by Amd

Ryzen 5 5600h Firmware by Amd

Ryzen 5 5600hs Firmware by Amd

Ryzen 5 5600u Firmware by Amd

Ryzen 5 5600x Firmware by Amd

Ryzen 5 5625u Firmware by Amd

Ryzen 5 6600h Firmware by Amd

Ryzen 5 6600hs Firmware by Amd

Ryzen 5 6600u Firmware by Amd

Ryzen 5 7535hs Firmware by Amd

Ryzen 5 7535u Firmware by Amd

Ryzen 5 Pro 3350g Firmware by Amd

Ryzen 5 Pro 3350g Firmware by Amd

Ryzen 5 Pro 3350ge Firmware by Amd

Ryzen 5 Pro 3350ge Firmware by Amd

Ryzen 5 Pro 3400g Firmware by Amd

Ryzen 5 Pro 3400g Firmware by Amd

Ryzen 5 Pro 3400ge Firmware by Amd

Ryzen 5 Pro 3400ge Firmware by Amd

Ryzen 5 Pro 5645 Firmware by Amd

Ryzen 7 3700c Firmware by Amd

Ryzen 7 3700u Firmware by Amd

Ryzen 7 3700x Firmware by Amd

Ryzen 7 3700x Firmware by Amd

Ryzen 7 3750h Firmware by Amd

Ryzen 7 3780u Firmware by Amd

Ryzen 7 3800x Firmware by Amd

Ryzen 7 3800x Firmware by Amd

Ryzen 7 3800xt Firmware by Amd

Ryzen 7 3800xt Firmware by Amd

Ryzen 7 4700u Firmware by Amd

Ryzen 7 4800h Firmware by Amd

Ryzen 7 4800hs Firmware by Amd