Phoenix has identified a potential vulnerability that involves unsafe UEFI variable handling in Phoenix SecureCore Technology 4 (SCT4) Firmware, potentially leading to unsafe memory access that could cause temporary denial of service.
Tracked under CVE-2024-12533, this potential vulnerability affects all platforms incorporating Phoenix SCT4 firmware.
Patches for mitigating this bug were made available to partners no later than November of 2024.
For device-specific information, please contact your system manufacturer.
Phoenix Technologies strongly recommends that customers always update their endpoint firmware to the latest available version to receive mitigations for security vulnerabilities.
