QID 91917

Date Published: 2022-06-15

QID 91917: Microsoft Windows Security Update for Memory Mapped I/O (MMIO) Stale Data Vulnerabilities (ADV220002)

Microsoft has released software updates to help mitigate below vulnerabilities. To get all available protections, firmware (microcode) and software updates are required

CVE-2022-21123 - Shared Buffer Data Read
CVE-2022-21125 - Shared Buffer Data Sampling
CVE-2022-21127 - Special Register Buffer Data Sampling Update
CVE-2022-21166 - Device Register Partial Write

QID Detection Logic (Authenticated):
Operating Systems: Windows Server 2008, Windows Server 2008 R2, Windows 7, Windows 8.1, Windows RT 8.1, Windows10, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows 10 21H2, Windows 11, Windows Server 2019, Windows 2019 Core, Windows Server 2022

The KB Articles associated with the update:
5014738
5014746
5014747
5014741
5014748
5014742
5014752
5014743
5014702
5014710
5014699
5014697
5014678
5014692

This QID checks for the file version of ntoskrnl.exe This QID will check if the running processor is a Intel Processor by looking up the registry key "HKLM\HARDWARE\DESCRIPTION\System\CentralProcessor{DESCRIPTION}" value "VendorIdentifier".

Successfully exploited these vulnerabilities may lead to information disclosure and impact confidentiality

CVSS V3 rated as High - 6.1 severity.

CVSS V2 rated as Medium - 5.4 severity.

Solution

Customers are advised to refer to ADV220002 for more details pertaining to this vulnerability.

Vendor References

ADV220002 - msrc.microsoft.com/update-guide/en-US/vulnerability/ADV220002
KB5014678 - support.microsoft.com/help/5014678
KB5014692 - support.microsoft.com/help/5014692
KB5014697 - support.microsoft.com/help/5014697
KB5014699 - support.microsoft.com/help/5014699
KB5014702 - support.microsoft.com/help/5014702
KB5014710 - support.microsoft.com/help/5014710
KB5014738 - support.microsoft.com/help/5014738
KB5014741 - support.microsoft.com/help/5014741
KB5014742 - support.microsoft.com/help/5014742
KB5014743 - support.microsoft.com/help/5014743
KB5014746 - support.microsoft.com/help/5014746
KB5014747 - support.microsoft.com/help/5014747
KB5014748 - support.microsoft.com/help/5014748
KB5014752 - support.microsoft.com/help/5014752

CVEs related to QID 91917

CVE-2022-21123 | CVE-2022-21125 | CVE-2022-21127 | CVE-2022-21166 |

Software Advisories

Advisory ID	Software	Component	Link
KB5014678			support.microsoft.com/en-in/help/5014678
KB5014692			support.microsoft.com/en-in/help/5014692
KB5014697			support.microsoft.com/en-in/help/5014697
KB5014699			support.microsoft.com/en-in/help/5014699
KB5014702			support.microsoft.com/en-in/help/5014702
KB5014710			support.microsoft.com/en-in/help/5014710
KB5014738			support.microsoft.com/en-in/help/5014738
KB5014741			support.microsoft.com/en-in/help/5014741
KB5014742			support.microsoft.com/en-in/help/5014742
KB5014743			support.microsoft.com/en-in/help/5014743
KB5014746			support.microsoft.com/en-in/help/5014746
KB5014747			support.microsoft.com/en-in/help/5014747
KB5014748			support.microsoft.com/en-in/help/5014748
KB5014752			support.microsoft.com/en-in/help/5014752

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].