Cyber Resilience

CVE-2022-38692

Critical

Published: 01 September 2025

Published
01 September 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0019 40.9th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-38692 is a critical-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Nccgroup (inferred from references). Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique System Firmware (T1542.001); ranked at the 40.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2022-38692 is a vulnerability in BootROM involving a missing size check for RSA keys during Certificate Type 0 validation, which can lead to a memory buffer overflow (CWE-119) without requiring additional execution privileges. The affected component is the BootROM in Unisoc SoCs, as detailed in research on Unisoc ROM vulnerabilities. It carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating critical severity.

Remote attackers can exploit this vulnerability over the network with low attack complexity, requiring no privileges or user interaction. Exploitation triggers a buffer overflow in the BootROM validation process, potentially enabling high-impact compromise of confidentiality, integrity, and availability.

Mitigation details are available in the NCC Group research advisory at https://www.nccgroup.com/research-blog/there-s-another-hole-in-your-soc-unisoc-rom-vulnerabilities/.

EU & UK References

Vulnerability details

In BootROM, there is a missing size check for RSA keys in Certificate Type 0 validation. This could lead to memory buffer overflow without requiring additional execution privileges.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1542.001 System Firmware Stealth
Adversaries may modify system firmware to persist on systems.
Why these techniques?

Buffer overflow in BootROM RSA key validation during certificate processing directly enables code execution or compromise at the system firmware level in the pre-OS boot chain.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2022-38696Shared CWE-119
CVE-2023-48267Shared CWE-119
CVE-2024-31155Shared CWE-119
CVE-2025-23397Shared CWE-119
CVE-2023-49618Shared CWE-119
CVE-2025-26597Shared CWE-119
CVE-2024-52923Shared CWE-119
CVE-2025-9185Shared CWE-119
CVE-2025-23398Shared CWE-119
CVE-2026-2521Shared CWE-119

Affected Assets

Nccgroup
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly addresses the missing size check for RSA keys by requiring validation of information inputs during BootROM certificate processing to prevent buffer overflows.

prevent

Implements memory protections that mitigate exploitation of the buffer overflow vulnerability in BootROM by preventing unauthorized code execution.

prevent

Requires identification, reporting, and correction of the specific BootROM flaw, including firmware updates to eliminate the buffer overflow risk.

References