CVE-2024-1598: Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for Intel Gemini Lake.This issue af
highvulnerability
security
Summary
CVE-2024-1598 is a buffer overflow vulnerability (a memory safety bug where data overwrites adjacent memory) in Phoenix SecureCore for Intel Gemini Lake processors, specifically in how the system handles UEFI variables (low-level firmware settings). The vulnerability affects versions 4.1.0.1 through 4.1.0.566, but a patched version exists.
Solution / Mitigation
Update to Phoenix SecureCore for Intel Gemini Lake version 4.1.0.567 or later.
Vulnerability Details
CVSS Score
7.5(high)
EPSS (30-day exploit probability)
EPSS: 0.1%
Classification
Attack SophisticationModerate
Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-1598
First tracked: February 15, 2026 at 08:51 PM
Classified by LLM (prompt v3) · confidence: 95%