CVE-2024-1298 Information

Description

EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.

Reference

https://github.com/tianocore/edk2/security/advisories/GHSA-chfw-xj8f-6m53