CVE-2024-36434

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-36434
An SMM callout vulnerability was discovered in Supermicro X11DPH-T, X11DPH-Tq, and X11DPH-i motherboards with BIOS firmware before 4.4.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://www.supermicro.com/en/support/security_BIOS_Jul_2024
https://www.supermicro.com/en/support/security_center#%21advisories
https://www.supermicro.com/en/support/security_BIOS_Jul_2024
https://www.supermicro.com/en/support/security_center#%21advisories
Configurations

No configuration.

History

No history.

Information

Published : 2024-07-15 19:15

Updated : 2024-11-21 09:22

NVD link : CVE-2024-36434

Mitre link : CVE-2024-36434

CVE.ORG link : CVE-2024-36434

JSON object : View

Products Affected

No product.

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer