CVE-2024-36877

HIGH

Micro-Star International Z-series/B-series Motherboards - Write-What-Where Condition via SMI 0xE3

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-36877. PoCs published by jjensn, CERTologists.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2024-36877, targeting a firmware vulnerability. The exploit leverages SMI (System Management Interrupt) manipulation and memory corruption techniques to achieve arbitrary code execution in SMM (System Management Mode).

Description

Micro-Star International Z-series motherboards (Z590, Z490, and Z790) and B-series motherboards (B760, B560, B660, and B460) with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was discovered to contain a write-what-where condition in the in the SW handler for SMI 0xE3. Motherboard's with the following chipsets are affected: Intel 300, Intel 400, Intel 500, Intel 600, Intel 700, AMD 300, AMD 400, AMD 500, AMD 600 and AMD 700.

Exploits (2)

nomisec WORKING POC 48 stars
by jjensn · poc
https://github.com/jjensn/CVE-2024-36877

This repository contains a functional exploit PoC for CVE-2024-36877, targeting a firmware vulnerability. The exploit leverages SMI (System Management Interrupt) manipulation and memory corruption techniques to achieve arbitrary code execution in SMM (System Management Mode).

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Reliable
Target: UEFI firmware (specific vendor/model not specified)
No auth needed
Prerequisites: Physical or local access to the target system · Ability to execute code in kernel mode
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 8.2
EPSS 0.0068
EPSS Percentile 47.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-123
Status published
Published Aug 12, 2024
Tracked Since Feb 18, 2026