CVE-2022-30426

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2022-30426
There is a stack buffer overflow vulnerability, which could lead to arbitrary code execution in UEFI DXE driver on some Acer products. An attack could exploit this vulnerability to escalate privilege from ring 3 to ring 0, and hijack control flow during UEFI DXE execution. This affects Altos T110 F3 firmware version <= P13 (latest) and AP130 F2 firmware version <= P04 (latest) and Aspire 1600X firmware version <= P11.A3L (latest) and Aspire 1602M firmware version <= P11.A3L (latest) and Aspire 7600U firmware version <= P11.A4 (latest) and Aspire MC605 firmware version <= P11.A4L (latest) and Aspire TC-105 firmware version <= P12.B0L (latest) and Aspire TC-120 firmware version <= P11-A4 (latest) and Aspire U5-620 firmware version <= P11.A1 (latest) and Aspire X1935 firmware version <= P11.A3L (latest) and Aspire X3475 firmware version <= P11.A3L (latest) and Aspire X3995 firmware version <= P11.A3L (latest) and Aspire XC100 firmware version <= P11.B3 (latest) and Aspire XC600 firmware version <= P11.A4 (latest) and Aspire Z3-615 firmware version <= P11.A2L (latest) and Veriton E430G firmware version <= P21.A1 (latest) and Veriton B630_49 firmware version <= AAP02SR (latest) and Veriton E430 firmware version <= P11.A4 (latest) and Veriton M2110G firmware version <= P21.A3 (latest) and Veriton M2120G fir.

7.8 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/10TG/vulnerabilities/blob/main/Acer/CVE-2022-30426/CVE-2022-30426.md Exploit Third Party Advisory
http://altos.com Broken Link
http://acer.com Vendor Advisory
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:acer:altos_t110_f3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:altos_t110_f3:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:acer:ap130_f2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:ap130_f2:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:acer:aspire_1600x_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_1600x:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:acer:aspire_1602m_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_1602m:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:acer:aspire_7600u_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_7600u:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:acer:aspire_mc605_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_mc605:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:acer:aspire_tc-105_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_tc-105:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:acer:aspire_tc-120_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_tc-120:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:acer:aspire_u5-620_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_u5-620:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:acer:aspire_x1935_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_x1935:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:acer:aspire_x3475_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_x3475:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:acer:aspire_x3995_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_x3995:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:acer:aspire_xc100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_xc100:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:acer:aspire_xc600_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_xc600:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:acer:aspire_z3-615_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:aspire_z3-615:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:acer:veriton_b630_49_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_b630_49:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:acer:veriton_e430g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_e430g:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:acer:veriton_e430_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_e430:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:acer:veriton_m2110g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_m2110g:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:acer:veriton_m2120g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_m2120g:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:acer:veriton_m2611g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_m2611g:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:acer:veriton_m2611_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_m2611:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:acer:veriton_m4620_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_m4620:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:acer:veriton_m4620g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_m4620g:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:acer:veriton_m6620g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_m6620g:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:acer:veriton_n2620g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_n2620g:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:acer:veriton_n4620g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_n4620g:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:acer:veriton_n4630g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_n4630g:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:acer:veriton_s6620g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_s6620g:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:acer:veriton_x2611g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_x2611g:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:acer:veriton_x2611_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_x2611:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:acer:veriton_x4620g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_x4620g:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:acer:veriton_x6620g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_x6620g:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:acer:veriton_z2650g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:acer:veriton_z2650g:-:*:*:*:*:*:*:*
Information

Published : 2022-09-22 17:15

Updated : 2022-09-26 07:35

NVD link : CVE-2022-30426

Mitre link : CVE-2022-30426

JSON object : View

CWE
CWE-787

Out-of-bounds Write

Advertisement

dedicated server usa
Products Affected

acer

  • aspire_x3995_firmware
  • aspire_x3475_firmware
  • veriton_n2620g_firmware
  • aspire_tc-120
  • veriton_n4620g_firmware
  • veriton_s6620g_firmware
  • veriton_z2650g_firmware
  • veriton_s6620g
  • veriton_x4620g
  • veriton_x6620g
  • veriton_n4630g
  • aspire_xc600_firmware
  • aspire_7600u
  • veriton_b630_49_firmware
  • veriton_m6620g_firmware
  • veriton_n4630g_firmware
  • veriton_x2611_firmware
  • altos_t110_f3
  • veriton_x6620g_firmware
  • aspire_7600u_firmware
  • aspire_mc605
  • veriton_e430_firmware
  • aspire_z3-615
  • veriton_x2611g
  • veriton_x4620g_firmware
  • veriton_m4620
  • veriton_m2120g
  • aspire_tc-120_firmware
  • aspire_tc-105
  • aspire_u5-620
  • veriton_m2611g_firmware
  • veriton_n4620g
  • veriton_e430g
  • veriton_m4620_firmware
  • veriton_m2110g
  • aspire_x1935
  • veriton_m4620g_firmware
  • veriton_x2611
  • veriton_m2110g_firmware
  • aspire_xc100
  • ap130_f2
  • aspire_xc600
  • aspire_1600x
  • veriton_m2611_firmware
  • aspire_1600x_firmware
  • aspire_1602m
  • veriton_x2611g_firmware
  • altos_t110_f3_firmware
  • aspire_mc605_firmware
  • ap130_f2_firmware
  • aspire_x3995
  • veriton_e430
  • veriton_m2611g
  • veriton_m2611
  • aspire_u5-620_firmware
  • veriton_m2120g_firmware
  • aspire_1602m_firmware
  • veriton_m4620g
  • veriton_m6620g
  • aspire_x1935_firmware
  • aspire_tc-105_firmware
  • veriton_n2620g
  • aspire_x3475
  • veriton_e430g_firmware
  • veriton_z2650g
  • aspire_z3-615_firmware
  • aspire_xc100_firmware
  • veriton_b630_49