Lucene search
PRIOn knowledge basePRION:CVE-2023-45235HistoryJan 16, 2024 - 4:15 p.m.
Buffer overflow
2024-01-1616:15:00
PRIOn knowledge base
www.prio-n.com
6
edk2 network package
buffer overflow
dhcpv6
server id option
unauthorized access
confidentiality
integrity
availability
nvd
EDK2’s Network Package is susceptible to a buffer overflow vulnerability when
handling Server ID option
from a DHCPv6 proxy Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
References
packetstormsecurity.com/files/176574/PixieFail-Proof-Of-Concepts.html
www.openwall.com/lists/oss-security/2024/01/16/2
github.com/tianocore/edk2/security/advisories/GHSA-hc6x-cw6p-gj7h
lists.fedoraproject.org/archives/list/[email protected]/message/SJ42V7O7F4OU6R7QSQQECLB6LDHKZIMQ/
security.netapp.com/advisory/ntap-20240307-0011/
Related
ubuntucve
ubuntucve
CVE-2023-45235
2024-01-16 00:00:00
nvd
nvd
CVE-2023-45235
2024-01-16 16:15:12
nessus
nessus
CBL Mariner 2.0 Security Update: edk2 / hvloader (CVE-2023-45235)
2024-07-03 00:00:00
Amazon Linux 2 : edk2 (ALAS-2024-2483)
2024-03-05 00:00:00
RHEL 8 : edk2 (RHSA-2024:3017)
2024-05-23 00:00:00
cvelist
cvelist
CVE-2023-45235 Buffer Overflow in EDK II Network Package
2024-01-16 16:11:41
cbl_mariner
cbl_mariner
redhatcve
redhatcve
CVE-2023-45235
2024-01-17 03:56:05
alpinelinux
alpinelinux
CVE-2023-45235
2024-01-16 16:15:12
cve
cve
CVE-2023-45235
2024-01-16 16:15:12
debiancve
debiancve
CVE-2023-45235
2024-01-16 16:15:12
redhat
redhat
(RHSA-2024:2264) Important: edk2 security update
2024-04-30 06:15:12
(RHSA-2024:3017) Important: edk2 security update
2024-05-22 06:35:22
amazon
amazon
Important: edk2
2024-02-29 10:03:00
almalinux
almalinux
Important: edk2 security update
2024-05-22 00:00:00
Important: edk2 security update
2024-04-30 00:00:00
rocky
rocky
edk2 security update
2024-05-10 14:32:38
osv
osv
Important: edk2 security update
2024-05-10 14:32:38
Important: edk2 security update
2024-04-30 00:00:00
Important: edk2 security update
2024-05-22 00:00:00
oraclelinux
oraclelinux
edk2 security update
2024-05-23 00:00:00
edk2 security update
2024-05-03 00:00:00
edk2 security update
2024-06-03 00:00:00
thn
thn
openvas
openvas
Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2024-1733)
2024-05-30 00:00:00
Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2024-1722)
2024-05-30 00:00:00
Ubuntu: Security Advisory (USN-6638-1)
2024-02-15 00:00:00
ubuntu
ubuntu
EDK II vulnerabilities
2024-02-15 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: edk2-20240214-2.fc39
2024-03-13 01:25:14
cert
cert
Vulnerabilities in EDK2 NetworkPkg IP stack implementation.
2024-01-16 00:00:00
debian
debian
[SECURITY] [DSA 5624-1] edk2 security update
2024-02-14 20:00:57
redos
redos
ROS-20240625-06
2024-06-25 00:00:00