### [CVE-2024-36877](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36877)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Micro-Star International Z-series motherboards (Z590, Z490, and Z790) and B-series motherboards (B760, B560, B660, and B460) with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was discovered to contain a write-what-where condition in the in the SW handler for SMI 0xE3. Motherboard's with the following chipsets are affected: Intel 300, Intel 400, Intel 500, Intel 600, Intel 700, AMD 300, AMD 400, AMD 500, AMD 600 and AMD 700.

### POC

#### Reference
- https://jjensn.com/at-home-in-your-firmware/

#### Github
- https://github.com/CERTologists/POC-CVE-2024-36877
- https://github.com/jjensn/CVE-2024-36877
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/tylzars/awesome-vrre-writeups