EDK2's Network Package is susceptible to a buffer overflow vulnerability when
handling Server ID option
from a DHCPv6 proxy Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Metrics
Affected Vendors & Products
References
History
Thu, 19 Sep 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat rhel Aus
|
|
CPEs | cpe:/a:redhat:rhel_aus:8.2 cpe:/a:redhat:rhel_eus:8.8 |
|
Vendors & Products |
Redhat rhel Aus
|
MITRE
Status: PUBLISHED
Assigner: TianoCore
Published: 2024-01-16T16:11:41.215Z
Updated: 2024-08-02T20:14:19.859Z
Reserved: 2023-10-05T20:48:19.879Z
Link: CVE-2023-45235
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-01-16T16:15:12.643
Modified: 2024-03-13T02:15:50.617
Link: CVE-2023-45235
Redhat