CVE-2024-13745

Name of the Vulnerable Software and Affected Versions EDK II (affected versions not specified)

Description An issue exists where the firmware measures bytes differently from those actually being used. This affects the PCR[5] measurements, which record the expected GUID Partition Table (GPT) layout. Consequently, the PCR[5] measurements cannot be trusted, which may impact TPM-based Full Disk Encryption (FDE) instances in scenarios where the GPT layout is security-relevant.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.