8.2
CVE-2024-7344
- EPSS 0.14%
- Veröffentlicht 14.01.2025 14:15:34
- Zuletzt bearbeitet 22.01.2025 15:41:04
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
LoginHowyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cs-grp ≫ Neo Impact Version < 10.1.024-20241127
Greenware ≫ Greenguard Version < 10.2.023-20240927
Radix ≫ Smart Recovery Version < 11.2.023-20240927
Sanfong ≫ Ez-back System Version < 10.3.024-20241127
Signalcomputer ≫ Hdd King Version < 10.3.021-20241127
Wasay ≫ Erecoveryrx Version < 8.4.022-20241127
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.348 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.2 | 1.5 | 6 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 8.2 | 1.5 | 6 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
|
CWE-347 Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.