CVE-2024-36355

N/A

Description

Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 (sleep) wake up, potentially resulting in arbitrary code execution.

CVE Details

CVSS v3.1 ScoreN/A

Published2/10/2026

Last Modified2/12/2026

Sourcenvd

Honeypot Sightings0

Weaknesses (CWE)

CWE-787

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3023.html(psirt@amd.com)

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4013.html(psirt@amd.com)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.