CVE-2024-30212

N/A Unknown

Published: May 28, 2024 Modified: April 15, 2026

Description

If a SCSI READ(10) command is initiated via USB using the largest LBA (0xFFFFFFFF) with it's default block size of 512 and a count of 1, the first 512 byte of the 0x80000000 memory area is returned to the user. If the block count is increased, the full RAM can be exposed. The same method works to write to this memory area. If RAM contains pointers, those can be - depending on the application - overwritten to return data from any other offset including Progam and Boot Flash.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://github.com/Fehr-GmbH/blackleak

Source: dc3f6da9-85b5-4a73-84a2-2ec90b40fca5

https://github.com/Microchip-MPLAB-Harmony/core/blob/master/release_notes.md

Source: dc3f6da9-85b5-4a73-84a2-2ec90b40fca5

https://github.com/Microchip-MPLAB-Harmony/core/commit/d4608a4f1a140bd899cd4337cdbfb343a4339216

Source: dc3f6da9-85b5-4a73-84a2-2ec90b40fca5

https://github.com/Fehr-GmbH/blackleak

Source: af854a3a-2127-422b-91ae-364da2661108

https://github.com/Microchip-MPLAB-Harmony/core/blob/master/release_notes.md

Source: af854a3a-2127-422b-91ae-364da2661108

https://github.com/Microchip-MPLAB-Harmony/core/commit/d4608a4f1a140bd899cd4337cdbfb343a4339216

Source: af854a3a-2127-422b-91ae-364da2661108

6 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.3%

48th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-190

Related CVEs

CVE-2026-41242 N/A

CVE-2026-40948 N/A

CVE-2026-2986 6.4

CVE-2026-2505 5.4

CVE-2026-0894 6.4