CVE-2024-0762

HIGH

Phoenix SecureCore - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-0762. PoCs published by abandon1337, tadash10.

AI-analyzed exploit summary This repository contains a functional proof-of-concept for CVE-2024-0762, demonstrating a buffer overflow vulnerability where a vulnerable function copies data beyond the allocated buffer size, potentially overwriting adjacent variables. The PoC includes both vulnerable and safe implementations for comparison.

Description

Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ for Intel Ice Lake: from 4.2.0.1 before 4.2.0.323; Phoenix SecureCore™ for Intel Comet Lake: from 4.2.1.1 before 4.2.1.287; Phoenix SecureCore™ for Intel Tiger Lake: from 4.3.0.1 before 4.3.0.236; Phoenix SecureCore™ for Intel Jasper Lake: from 4.3.1.1 before 4.3.1.184; Phoenix SecureCore™ for Intel Alder Lake: from 4.4.0.1 before 4.4.0.269; Phoenix SecureCore™ for Intel Raptor Lake: from 4.5.0.1 before 4.5.0.218; Phoenix SecureCore™ for Intel Meteor Lake: from 4.5.1.1 before 4.5.1.15.

Exploits (2)

nomisec WORKING POC

by abandon1337 · poc

https://github.com/abandon1337/CVE-2024-0762

View Code ZIP pw:eip

This repository contains a functional proof-of-concept for CVE-2024-0762, demonstrating a buffer overflow vulnerability where a vulnerable function copies data beyond the allocated buffer size, potentially overwriting adjacent variables. The PoC includes both vulnerable and safe implementations for comparison.

Classification

Working Poc 95%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Unknown (generic buffer overflow demonstration)

No auth needed

Prerequisites: None

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec SCANNER

by tadash10 · poc

https://github.com/tadash10/Detect-CVE-2024-0762

View Code ZIP pw:eip

The repository contains a Python script designed to detect UEFI firmware versions and check for vulnerability to CVE-2024-0762. It includes additional functionality for VirusTotal API integration to analyze files for malware.

Classification

Scanner 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: UEFI firmware (versions not specified)

No auth needed

Prerequisites: Python 3.x · Requests library · VirusTotal API key

MITRE ATT&CK

T1082 - System Information Discovery

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Mitigation, Third Party Advisory

https://eclypsium.com/blog/ueficanhazbufferoverflow-widespread-impact-from-vulnerability-in-popular-pc-and-server-firmware/

Issue Tracking

https://news.ycombinator.com/item?id=40747852

Vendor Advisory

https://phoenixtech.com/phoenix-security-notifications/CVE-2024-0762/

Not Applicable

https://www.phoenix.com/security-notifications/cve-2024-0762/

Scores

CVSS v3 7.5

EPSS 0.0076

EPSS Percentile 50.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-120

Status published

Products (1)

phoenixtech/securecore_technology 4.0.1.1 - 4.0.1.998

Published May 14, 2024

Tracked Since Feb 18, 2026