Description
Certain motherboard models developed by ASRock and its subsidiaries, ASRockRack and ASRockInd. has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded.
CVSS breakdown
CVSS 4.0
Attack Vector
Physical
Attack Complexity
Low
Attack Requirements
None
Privileges Required
None
User Interaction
None
Confidentiality (Vulnerable System)
High
Integrity (Vulnerable System)
High
Availability (Vulnerable System)
High
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
CVSS 3.1
Attack Vector
Physical
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- ASRock / Intel 500 chipset motherboard0 – 0
- ASRock / Intel 600 chipset motherboard0 – 0
- ASRock / Intel 700 chipset motherboard0 – 0
- ASRock / Intel 800 chipset motherboard0 – 0
- ASRockInd / Intel 500 chipset motherboard0 – 0
- ASRockInd / Intel 600 chipset motherboard0 – 0
- ASRockInd / Intel 700 chipset motherboard0 – 0
- ASRockInd / Intel 800 chipset motherboard0 – 0
- ASRockRack / Intel 500 chipset motherboard0 – 0
- ASRockRack / Intel 600 chipset motherboard0 – 0
- ASRockRack / Intel 700 chipset motherboard0 – 0
- ASRockRack / Intel 800 chipset motherboard0 – 0