CVE-2024-36310

Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to…

AMD·CWE-124·Published 2026-02-10

CVSS

—

EPSS

0.00

KEV

Exploits

cve.orgen

206 chars

Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or integrity.

NVDen

206 chars

NVDes

237 chars

Validación de entrada incorrecta en el búfer de comunicaciones SMM podría permitir a un atacante privilegiado realizar una lectura o escritura fuera de límites en SMRAM, lo que podría resultar en pérdida de confidencialidad o integridad.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
4.0	Primary	cve.org	4.6	—	—	CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
4.0	Secondary	NVD	4.6	—	—