Buffer Underwrite ('Buffer Underflow')
CVE-2024-36310
Summary
Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or integrity.
- LOW
- LOCAL
- NONE
- HIGH
CWE-124 - Buffer Underwrite ('Buffer Underflow')
The software writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer.
References
Advisory Timeline
- Published
