CVE-2024-36310

Vulnerability Description

Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or integrity.

Related Weaknesses (CWE)

CWE-124

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3023.html
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4013.html
https://www.amd.com/en/resources/product-security/bulletin/Emb-Auto.html

FAQ

What is CVE-2024-36310?

CVE-2024-36310 is a documented vulnerability. Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or inte...

How severe is CVE-2024-36310?

CVSS scoring is not yet available for CVE-2024-36310. Check NVD for updates.

Is there a patch for CVE-2024-36310?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.