CVE-2024-0762

HIGH

exploitra

Details

CVSS v3: 7.5
NVD published: 2024-05-14 16:15:53
EPSS: 0.4% probability · 59.9th percentile — 2026-04-17
Affected versions: cpe:2.3:o:phoenixtech:securecore_technology:*:*:*:*:*:*:*:* cpe:2.3:h:intel:celeron_3865u:-:*:*:*:*:*:*:* cpe:2.3:h:intel:celeron_3867u:-:*:*:*:*:*:*:* cpe:2.3:h:intel:celeron_3965u:-:*:*:*:*:*:*:* cpe:2.3:h:intel:celeron_3965y:-:*:*:*:*:*:*:* cpe:2.3:h:intel:celeron_g3930:-:*:*:*:*:*:*:* cpe:2.3:h:intel:celeron_g3930t:-:*:*:*:*:*:*:* cpe:2.3:h:intel:celeron_g3950:-:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7020u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7100:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7100h:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7100t:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7100u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7101e:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7101te:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7130u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7167u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7300:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7300t:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7320:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-7350k:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i3-8130u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7200u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7260u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7267u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7287u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7300hq:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7300u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7360u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7400:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7400t:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7440hq:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7500:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7500t:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7600:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7600k:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7600t:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7640x:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7y54:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-7y57:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-8250u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-8305g:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i5-8350u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i7-7500u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i7-7560u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i7-7567u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i7-7600u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i7-7660u:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i7-7700:*:*:*:*:*:*:*:* cpe:2.3:h:intel:core_i7-7700hq:*:*:*:*:*:*:*:*
Summary: Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ for Intel Ice Lake: from 4.2.0.1 before 4.2.0.323; Phoenix SecureCore™ for Intel Comet Lake: from 4.2.1.1 before 4.2.1.287; Phoenix SecureCore™ for Intel Tiger Lake: from 4.3.0.1 before 4.3.0.236; Phoenix SecureCore™ for Intel Jasper Lake: from 4.3.1.1 before 4.3.1.184; Phoenix SecureCore™ for Intel Alder Lake: from 4.4.0.1 before 4.4.0.269; Phoenix SecureCore™ for Intel Raptor Lake: from 4.5.0.1 before 4.5.0.218; Phoenix SecureCore™ for Intel Meteor Lake: from 4.5.1.1 before 4.5.1.15.
Remediation: Not available in our cache.
Exploit info: https://eclypsium.com/blog/ueficanhazbufferoverflow-widespread-impact-from-vulnerability-in-popular-pc-and-server-firmware/

TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.

Subscribe — free email digest or paid plan

Information is aggregated from multiple authoritative sources for convenience; verify with NVD and vendors before operational decisions.