CVE-2024-0762

Potential buffer overflow when handling UEFI variables

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

Potential buffer overflow
in unsafe UEFI variable handling

in Phoenix SecureCore™ for select Intel platforms

This issue affects:

Phoenix

SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998;

Phoenix

SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562;

Phoenix

SecureCore™ for Intel Ice Lake: from 4.2.0.1 before 4.2.0.323;

Phoenix

SecureCore™ for Intel Comet Lake: from 4.2.1.1 before 4.2.1.287;

Phoenix

SecureCore™ for Intel Tiger Lake: from 4.3.0.1 before 4.3.0.236;

Phoenix

SecureCore™ for Intel Jasper Lake: from 4.3.1.1 before 4.3.1.184;

Phoenix

SecureCore™ for Intel Alder Lake: from 4.4.0.1 before 4.4.0.269;

Phoenix

SecureCore™ for Intel Raptor Lake: from 4.5.0.1 before 4.5.0.218;

Phoenix

SecureCore™ for Intel Meteor Lake: from 4.5.1.1 before 4.5.1.15.

Posible desbordamiento del búfer en el manejo inseguro de variables UEFI en Phoenix SecureCore™ para plataformas Intel seleccionadas. Este problema afecta a: Phoenix SecureCore™ para Intel Kaby Lake: desde 4.0.1.1 antes de 4.0.1.998; Phoenix SecureCore™ para Intel Coffee Lake: desde 4.1.0.1 anterior a 4.1.0.562; Phoenix SecureCore™ para Intel Ice Lake: desde 4.2.0.1 anterior a 4.2.0.323; Phoenix SecureCore™ para Intel Comet Lake: desde 4.2.1.1 anterior a 4.2.1.287; Phoenix SecureCore™ para Intel Tiger Lake: desde 4.3.0.1 anterior a 4.3.0.236; Phoenix SecureCore™ para Intel Jasper Lake: desde 4.3.1.1 anterior a 4.3.1.184; Phoenix SecureCore™ para Intel Alder Lake: desde 4.4.0.1 anterior a 4.4.0.269; Phoenix SecureCore™ para Intel Raptor Lake: desde 4.5.0.1 anterior a 4.5.0.218; Phoenix SecureCore™ para Intel Meteor Lake: desde 4.5.1.1 antes de 4.5.1.15.

*Credits: Oren Isacson from Eclypsium

CVSS Scores

Phoenix Technologies, Inc.v3.1 7.5

Attack Vector

Local

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

None

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-01-19 CVE Reserved
2024-05-14 CVE Published
2024-06-22 EPSS Updated
2024-08-01 CVE Updated
2024-09-05 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (4)

URL	Tag	Source
https://eclypsium.com/blog/ueficanhazbufferoverflow-widespread-impact-from-vulnerability-in-popular-pc-and-server-firmware
https://news.ycombinator.com/item?id=40747852
https://www.phoenix.com/security-notifications/cve-2024-0762

URL	Date	SRC
https://github.com/tadash10/Detect-CVE-2024-0762	2024-09-05

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Ka Search vendor "Phoenix" for product "SecureCore™ For Intel Ka"				>= 4.0.1.1 < 4.0.1.998 Search vendor "Phoenix" for product "SecureCore™ For Intel Ka" and version " >= 4.0.1.1 < 4.0.1.998"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Coffee Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Coffee Lake"				>= 4.1.0.1 < 4.1.0.562 Search vendor "Phoenix" for product "SecureCore™ For Intel Coffee Lake" and version " >= 4.1.0.1 < 4.1.0.562"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Ice Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Ice Lake"				>= 4.2.0.1 < 4.2.0.323 Search vendor "Phoenix" for product "SecureCore™ For Intel Ice Lake" and version " >= 4.2.0.1 < 4.2.0.323"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Comet Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Comet Lake"				>= 4.2.1.1 < 4.2.1.287 Search vendor "Phoenix" for product "SecureCore™ For Intel Comet Lake" and version " >= 4.2.1.1 < 4.2.1.287"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Tiger Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Tiger Lake"				>= 4.3.0.1 < 4.3.0.236 Search vendor "Phoenix" for product "SecureCore™ For Intel Tiger Lake" and version " >= 4.3.0.1 < 4.3.0.236"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Jasper Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Jasper Lake"				>= 4.3.1.1 < 4.3.1.184 Search vendor "Phoenix" for product "SecureCore™ For Intel Jasper Lake" and version " >= 4.3.1.1 < 4.3.1.184"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Alder Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Alder Lake"				>= 4.4.0.1 < 4.4.0.269 Search vendor "Phoenix" for product "SecureCore™ For Intel Alder Lake" and version " >= 4.4.0.1 < 4.4.0.269"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Raptor Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Raptor Lake"				>= 4.5.0.1 < 4.5.0.218 Search vendor "Phoenix" for product "SecureCore™ For Intel Raptor Lake" and version " >= 4.5.0.1 < 4.5.0.218"		en		Affected
Phoenix Search vendor "Phoenix"		SecureCore™ For Intel Meteor Lake Search vendor "Phoenix" for product "SecureCore™ For Intel Meteor Lake"				>= 4.5.1.1 < 4.5.1.15 Search vendor "Phoenix" for product "SecureCore™ For Intel Meteor Lake" and version " >= 4.5.1.1 < 4.5.1.15"		en		Affected