CVE-2024-37976

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:arm64:*
cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*

History

16 Oct 2024, 17:56

Type Values Removed Values Added
CWE NVD-CWE-noinfo
CPE cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*
cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:arm64:*
cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:x64:*
First Time Microsoft windows Server 2016
Microsoft windows 10 1809
Microsoft windows 10 21h2
Microsoft windows 11 22h2
Microsoft windows Server 2022
Microsoft windows 10 1607
Microsoft windows 11 21h2
Microsoft windows 11 24h2
Microsoft windows Server 2019
Microsoft windows 11 23h2
Microsoft windows Server 2012
Microsoft windows 10 22h2
Microsoft windows 10 1507
Microsoft
Microsoft windows Server 2022 23h2
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37976 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37976 - Patch, Vendor Advisory

10 Oct 2024, 12:56

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de omisión de la función de seguridad de la interfaz de firmware extensible de reanudación de Windows

08 Oct 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-08 18:15

Updated : 2024-10-16 17:56


NVD link : CVE-2024-37976

Mitre link : CVE-2024-37976

CVE.ORG link : CVE-2024-37976


JSON object : View

Products Affected

microsoft

  • windows_10_1507
  • windows_11_21h2
  • windows_server_2022
  • windows_server_2022_23h2
  • windows_11_23h2
  • windows_10_1809
  • windows_10_1607
  • windows_server_2016
  • windows_server_2019
  • windows_server_2012
  • windows_10_22h2
  • windows_10_21h2
  • windows_11_22h2
  • windows_11_24h2
CWE
NVD-CWE-noinfo CWE-190

Integer Overflow or Wraparound