CVE-2024-0179

CVE-2024-0179 is an SMM Callout vulnerability in the AmdCpmDisplayFeatureSMM driver that could allow locally authenticated attackers to overwrite SMRAM, potentially resulting in arbitrary code execution. This issue affects AMD systems utilizing the specified driver and is classified under CWE-20 (Improper Input Validation). The vulnerability received a CVSS v3.1 base score of 8.2 (AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H), indicating high severity due to its potential for significant confidentiality, integrity, and availability impacts with a changed scope.

Exploitation requires local access and high privileges (PR:H), making it feasible for authenticated users with elevated permissions on the affected system. Attackers could leverage the vulnerability to overwrite SMRAM, bypassing typical memory protections and achieving arbitrary code execution in the System Management Mode (SMM), which operates at a high privilege level.

AMD has published security bulletin AMD-SB-7027 at https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7027.html, which provides details on the issue and recommended mitigations or patches.