CVE-2024-36345

Published: Mag 15, 2026 Last Modified: Mag 15, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 4,6

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: high

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

Description

AI Translation Available

Improper input validation in the AMD OverDrive (AOD) System Management Mode (SMM) module could allow a privileged attacker to perform an out-of-bounds read, potentially resulting in loss of confidentiality.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0001

Percentile

0,0th

Updated

EPSS Score Trend (Last 6 Days)

1274

Improper Access Control for Volatile Memory Containing Boot Code

Stable

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control Integrity

Potential Impacts:

Modify Memory Execute Unauthorized Code Or Commands Gain Privileges Or Assume Identity

Applicable Platforms

All platforms may be affected

View CWE Details

https://www.amd.com/en/resources/product-security/bulletin/…

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3030.html

https://www.amd.com/en/resources/product-security/bulletin/…

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html

CVE-2024-36345

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 6 Days)

Improper Access Control for Volatile Memory Containing Boot Code

Common Consequences

Applicable Platforms

Iscriviti alla newsletter