Securecore Technology Security Vulnerabilities and Issues — Securecore Technology CVE List

PhoenixtechSecurecore Technology

7 matches found

CVE•added 2024/05/14 2:56 p.m.•80 views

CVE-2024-0762

CVE-2024-0762 affects Phoenix SecureCore UEFI firmware across Intel families (Kaby Lake through Meteor Lake) with a buffer overflow in unsafe UEFI variable handling that could allow local privilege escalation and firmware code execution. Affected Cisco? No, Phoenix SecureCore versions: Kaby Lake ...

7.8CVSS7AI score0.00389EPSS

CVE•added 2023/12/07 10:29 p.m.•69 views

CVE-2023-5058

Phoenix SecureCore Technology 4 is affected by an improper input validation issue in the processing of user-supplied splash screens during system boot, which could allow denial-of-service or arbitrary code execution. Affected product: Phoenix SecureCore Technology 4 firmware. Root cause: improper...

7.8CVSS7.9AI score0.00043EPSS

CVE•added 2024/05/14 2:56 p.m.•61 views

CVE-2024-1598

Affected software: Phoenix SecureCore for Intel Gemini Lake (versions 4.1.0.1 up to 4.1.0.566). Root cause / issue: Potential buffer overflow in unsafe UEFI variable handling. Impact: Not explicitly quantified beyond the vulnerability description in cited sources. Mitigation / remediation: Update...

7.8CVSS7AI score0.00109EPSS

CVE•added 2025/01/14 4:0 p.m.•60 views

CVE-2024-29980

CVE-2024-29980 affects Phoenix SecureCore software across Intel Kaby Lake, Coffee Lake, Comet Lake and Ice Lake. Root cause: improper check for unusual or exceptional conditions leading to input data manipulation. Affected versions: Kaby Lake before 4.0.1.1012; Coffee Lake before 4.1.0.568; Comet...

4.6CVSS3.8AI score0.00072EPSS

CVE•added 2025/01/14 4:0 p.m.•49 views

CVE-2024-29979

CVE-2024-29979 affects Phoenix SecureCore on Intel Kaby Lake, Coffee Lake, Comet Lake and Ice Lake. The vulnerability is an Improper Check for Unusual or Exceptional Conditions that allows Input Data Manipulation. Affected versions are: Kaby Lake before 4.0.1.1012; Coffee Lake before 4.1.0.568; C...

4.6CVSS3.8AI score0.00072EPSS

CVE•added 2023/11/14 11:17 p.m.•48 views

CVE-2023-31100

CVE-2023-31100 relates to an Improper Access Control in the SMI handler of Phoenix SecureCore Technologies 4. Affected versions include: 4.3.0.0 before 4.3.0.203; 4.3.1.0 before 4.3.1.163; 4.4.0.0 before 4.4.0.217; and 4.5.0.0 before 4.5.0.138. The root cause is an access control flaw in the SMI ...

8.4CVSS7AI score0.00045EPSS

CVE•added 2025/05/13 2:56 p.m.•42 views

CVE-2024-12533

Vulnerability summary (CVE-2024-12533) : Phoenix SecureCore Technology 4 is affected by an Improper Check for Unusual or Exceptional Conditions that allows Input Data Manipulation. The issue affects multiple version ranges across SecureCore 4: 4.0.1.0–4.0.1.1017, 4.1.0.1–4.1.0.572, 4.2.0.1–4.2.0....

3.3CVSS7.2AI score0.0008EPSS