CVE-2024-36432

An arbitrary memory write vulnerability was discovered in Supermicro X11DPG-HGX2, X11PDG-QT, X11PDG-OT, and X11PDG-SN motherboards with BIOS firmware before 4.4.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://www.supermicro.com/en/support/security_center#%21advisories
https://www.supermicro.com/zh_tw/support/security_BIOS_Jul_2024
https://www.supermicro.com/en/support/security_center#%21advisories
https://www.supermicro.com/zh_tw/support/security_BIOS_Jul_2024

Configurations

No configuration.

History

No history.

Information

Published : 2024-07-15 19:15

Updated : 2024-11-21 09:22

NVD link : CVE-2024-36432

Mitre link : CVE-2024-36432

CVE.ORG link : CVE-2024-36432

JSON object : View

Products Affected

No product.

CWE

CWE-1246

Improper Write Handling in Limited-write Non-Volatile Memories

7.5 /10