CVE-2024-7344
HIGH EXPLOITED RANSOMWARECs-grp Neo Impact < 10.1.024-20241127 - Signature Verification Bypass
Title source: ruleExploitation Summary
CVE-2024-7344 has been observed exploited in the wild (reported by VulnCheck KEV), including in ransomware campaigns.
Description
Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path.
References (6)
Core 6
Core References
Third Party Advisory, US Government Resource
https://www.kb.cert.org/vuls/id/529659
Exploit, Mitigation, Third Party Advisory
https://www.welivesecurity.com/en/eset-research/under-cloak-uefi-secure-boot-introducing-cve-2024-7344/
Scores
CVSS v3
8.2
EPSS
0.0104
EPSS Percentile
59.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
VulnCheck KEV
2025-09-26
Ransomware Use
Confirmed
CWE
CWE-347
Status
published
Products (7)
cs-grp/neo_impact
< 10.1.024-20241127
greenware/greenguard
< 10.2.023-20240927
howyar/sysreturn
< 10.2.023_20240919
radix/smart_recovery
< 11.2.023-20240927
sanfong/ez-back_system
< 10.3.024-20241127
signalcomputer/hdd_king
< 10.3.021-20241127
wasay/erecoveryrx
< 8.4.022-20241127
Published
Jan 14, 2025
Tracked Since
Feb 18, 2026