Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-29214

Опубликовано: 12 фев. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 7.5

Описание

Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

РелизСтатусПримечание
devel

not-affected

not fixable by OS microcode
esm-infra-legacy/trusty

not-affected

not fixable by OS microcode
esm-infra/bionic

not-affected

not fixable by OS microcode
esm-infra/focal

not-affected

not fixable by OS microcode
esm-infra/xenial

not-affected

not fixable by OS microcode
focal

not-affected

end of standard support, was not-affected [not fixable by OS microcode]
jammy

not-affected

not fixable by OS microcode
noble

not-affected

not fixable by OS microcode
oracular

not-affected

end of life, was not-affected [not fixable by OS microcode]
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 8%
0.00032
Низкий

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2024-29214

CVSS3: 7.5
redhat
9 месяцев назад

Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

nvd логотип

CVE-2024-29214

CVSS3: 7.5
nvd
9 месяцев назад

Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

debian логотип

CVE-2024-29214

CVSS3: 7.5
debian
9 месяцев назад

Improper input validation in UEFI firmware CseVariableStorageSmm for s ...

github логотип

GHSA-244r-4cqf-v63r

CVSS3: 7.5
github
9 месяцев назад

Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

fstec логотип

BDU:2025-02127

CVSS3: 7.5
fstec
9 месяцев назад

Уязвимость модуля CseVariableStorageSmm микропрограммного обеспечения UEFI процессоров Intel, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 8%
0.00032
Низкий

7.5 High

CVSS3

Уязвимость CVE-2024-29214