Cyber Resilience

CVE-2024-1598

High

Published: 14 May 2024

Published
14 May 2024
Modified
25 September 2025
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS Score 0.0011 28.7th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-1598 is a high-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Phoenixtech Securecore Technology. Its CVSS base score is 7.5 (High).

Operationally, ranked at the 28.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as APIs and Models.

EU & UK References

Vulnerability details

Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for Intel Gemini Lake.This issue affects: SecureCore™ for Intel Gemini Lake: from 4.1.0.1 before 4.1.0.567.

CWE(s)

AI Security AnalysisAI

AI Category
APIs and Models
Risk Domain
N/A
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: gemini, gemini

Related Threats

Affected Assets

phoenixtech
securecore technology
4.1.0.1 — 4.1.0.567

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References