How severe is CVE-2024-2502?

This vulnerability has a severity rating of LOW with a CVSS score of 2 out of 10.

What type of vulnerability is CVE-2024-2502?

This is classified as CWE-754, which is a common weakness in software security.

CVE-2024-2502 - LOW Severity | CVSS 2

Vulnerability Description

An application can be configured to block boot attempts after consecutive tamper resets are detected, which may not occur as expected. This is possible because the TAMPERRSTCAUSE register may not be properly updated when a level 4 tamper event (a tamper reset) occurs. This impacts Series 2 HSE-SVH devices, including xG23B, xG24B, xG25B, and xG28B, but does not impact xG21B. To mitigate this issue, upgrade to SE Firmware version 2.2.6 or later.

Related Vulnerabilities

CVE-2024-29979

MEDIUM

CVSS:2.3(Low)

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore™ for Intel Kaby Lake, Phoenix SecureCore™ for Intel Coffee Lake, Phoenix SecureCore™ for Intel Comet Lake, Phoe...

CWE-7542024

CVE-2024-29980

MEDIUM

CVSS:2.3(Low)

CWE-7542024

CVE-2022-47111

LOW

CVSS:2.5(Low)

7-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later versions are unaffected.

CWE-7542022

CVE-2022-47112

LOW

CVSS:2.5(Low)

7-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits. Some later versions are unaffected.

CWE-7542022

CVE-2024-27457

LOW

CVSS:2.5(Low)

Improper check for unusual or exceptional conditions in Intel(R) TDX Module firmware before version 1.5.06 may allow a privileged user to potentially enable information disclosure via local access.

CWE-7542024

CVE-2025-30258

LOW

CVSS:2.7(Low)

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify sig...

CWE-7542025