CVE-2024-7344

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 14, 2025

Summary

CVE-2024-7344 is a newly discovered vulnerability affecting Howyar UEFI Application's "Reloader," which is used in both 32-bit and 64-bit systems. The flaw permits the execution of unsigned software in a hardcoded path, posing a significant risk to the security of UEFI firmware. An attacker could exploit this weakness to install malicious code, potentially gaining persistent and low-level access to the targeted system. This vulnerability underscores the importance of keeping UEFI firmware updated and securing the boot process to mitigate such threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xX-v72
https://www.cve.org/CVERecord?id=CVE-2024-7344
https://nvd.nist.gov/vuln/detail/CVE-2024-7344

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-7344

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations