Description

Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path.

INFO

Published Date :

2025-01-14T13:29:56.915Z

Last Modified :

2025-09-15T15:36:17.748Z

Source :

certcc
AFFECTED PRODUCTS

The following products are affected by CVE-2024-7344 vulnerability.

Vendors Products
Cs-grp
  • Neo Impact
Greenware
  • Greenguard
Howyar
  • Sysreturn
Radix
  • Smart Recovery
Sanfong
  • Ez-back System
Signalcomputer
  • Hdd King
Wasay
  • Erecoveryrx
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-7344.

URL Resource
https://uefi.org/revocationlistfile cve-icon cve-icon
https://uefi.org/specs/UEFI/2.10/03_Boot_Manager.html cve-icon cve-icon
https://uefi.org/specs/UEFI/2.10/32_Secure_Boot_and_Driver_Signing.html cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-7344 cve-icon
https://www.eset.com/blog/enterprise/preparing-for-uefi-bootkits-eset-discovery-shows-the-importance-of-cyber-intelligence/ cve-icon cve-icon
https://www.kb.cert.org/vuls/id/529659 cve-icon cve-icon
https://www.welivesecurity.com/en/eset-research/under-cloak-uefi-secure-boot-introducing-cve-2024-7344/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact