Published: 05/08/2021 Updated: 16/08/2021

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tianocore edk ii -

A security issue has been found in edk2 In the function FpdtStatusCodeListenerPei(), the pointer BootPerformanceTable is read directly from an NVRAM variable ("FirmwarePerformance") Memory is then updated at that address A local attacker may modify the variable at his will, and after reboot the vulnerable code will update memory at the attacker ...

Documentation, examples, and other resources regarding analyzing EDK2 based UEFI firmware

CERT/CC UEFI Analysis Resources This repo is a collection of documentation notes and code pertaining to analyzing vulnerabilities in UEFI firmware built from the EDK2 project docs The docs folder contains notes and documentation regarding setting up an analysis environment and reproducing various vulnerabilities in firmware built with EDK2 EDK2 Packages SimplePkg The SimplePk

CWE-763 https://bugzilla.tianocore.org/show_bug.cgi?id=2957 https://nvd.nist.gov https://github.com/CERTCC/UEFI-Analysis-Resources https://security.archlinux.org/CVE-2021-28216

CVE-2021-28216

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect