Login Sign Up

CVE-2022-32766

7.2 HIGH

📋 TL;DR

This vulnerability in Intel BIOS firmware allows a privileged user with local access to potentially escalate privileges through improper input validation. It affects systems with specific Intel BIOS firmware versions. Attackers could gain higher system privileges than intended.

💻 Affected Systems

Products:
  • Intel BIOS firmware for specific platforms
Versions: Specific versions listed in Intel advisory SA-00777
Operating Systems: All operating systems running on affected hardware
Default Config Vulnerable: ⚠️ Yes
Notes: Requires local access and privileged user credentials. Exact affected platforms listed in Intel advisory.

📦 What is this software?

Compute Stick Stk2mv64cc Firmware by Intel

View all CVEs affecting Compute Stick Stk2mv64cc Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with administrative control, allowing installation of persistent malware, data theft, or disabling security controls.

🟠

Likely Case

Privileged user gains higher system privileges, potentially accessing sensitive data or modifying system configurations.

🟢

If Mitigated

Limited impact with proper access controls and monitoring in place, though risk remains for privileged users.

🌐 Internet-Facing: LOW - Requires local access and privileged user credentials, not directly exploitable over network.
🏢 Internal Only: MEDIUM - Internal privileged users could exploit this, but requires local access and specific conditions.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires local access and privileged user credentials. No public exploit code known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: BIOS updates provided by OEMs/Intel

Vendor Advisory: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html

Restart Required: Yes

Instructions:

1. Check Intel advisory SA-00777 for affected platforms. 2. Contact your system/OEM vendor for BIOS update. 3. Apply BIOS update following vendor instructions. 4. Reboot system to complete installation.

🔧 Temporary Workarounds

Restrict local access

all

Limit physical and remote local access to systems with affected BIOS

Monitor privileged user activity

all

Implement enhanced monitoring for privileged user actions on affected systems

🧯 If You Can't Patch

  • Implement strict access controls to limit who has privileged local access
  • Monitor systems for unusual privileged user activity and BIOS-related changes

🔍 How to Verify

Check if Vulnerable:

Check BIOS version against affected versions in Intel advisory SA-00777

Check Version:

System-specific: Windows - wmic bios get smbiosbiosversion; Linux - dmidecode -s bios-version

Verify Fix Applied:

Verify BIOS version has been updated to patched version from OEM/Intel

📡 Detection & Monitoring

Log Indicators:

  • Unusual BIOS/UEFI access attempts
  • Privilege escalation attempts
  • BIOS configuration changes

Network Indicators:

  • Not network exploitable - local access required

SIEM Query:

Search for BIOS/UEFI access events or privilege escalation attempts from local sessions

📊 Metadata

CVE ID: CVE-2022-32766
CVSS v3 Score: 7.2 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N
CWE: CWE-20
Published: May 10, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-32766, you might also want to check these:

CVE-2022-47190 10.0

CVE-2022-47190 allows remote attackers to upload malicious firmware containing a webshell to Generex...

Same vulnerability type (CWE-20)
CVE-2024-3400 10.0

CVE-2024-3400 is a critical command injection vulnerability in Palo Alto Networks PAN-OS GlobalProte...

Same vulnerability type (CWE-20)
CVE-2023-42802 10.0

This critical vulnerability in GLPI allows attackers to upload malicious PHP files to unauthorized d...

Same vulnerability type (CWE-20)