Security Bulletin, May 2025

CVE-2024-7344

May 16, 2025

Giga Computing Technology Co., Ltd. acknowledges the security vulnerabilities affecting GIGABYTE’s server, workstation, and motherboard products. The affected platforms are listed below.

Platform	BIOS Release Schedule
CVE-2024-7344
AMD EPYC™ 9005 Series Processors	June 2025
AMD EPYC™ 9004 Series Processors	August 2025
AMD EPYC™ 8004 Series Processors	Released
AMD EPYC™ 7003 Series Processors	August 2025
AMD EPYC™ 7002 Series Processors	August 2025
AMD Instinct™ MI300A APU	August 2025
AMD EPYC™ 4004 & Ryzen™ 9000/7000 Series Processors	June 2025
Intel® Xeon® 6 Processors	June 2025
5th/4th Gen Intel® Xeon® Scalable Processors & Intel® Xeon® CPU Max Series	July 2025
3rd Gen Intel® Xeon® Scalable Processors	July 2025
Intel® Xeon® E-2400 Series	August 2025
Intel® Xeon® E-2300 Series	August 2025
Intel® Xeon® W-3500/2500/3400/2400 Processors	TBD
14th/13th/12th Gen Intel® Core™ Processors	July 2025
NVIDIA Grace™ CPU	TBD

The vulnerabilities are listed below. Updated BIOS versions to address the threats will be available on all affected product pages.

Common Vulnerabilities or Exposures (CVEID): CVE-2024-7344

Severity Rating: High

Description: Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path.

*The release schedule may be adjusted without further notification. Please check this page or contact technical support for any future updates.

*Please navigate to the "Support" section of the relevant product page to download the updated BIOS.

*For any further assistance regarding this issue please contact your Giga Computing sales representative, or create a new support ticket at https://esupport.gigabyte.com