Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-45236

Опубликовано: 16 янв. 2024
Источник: nvd
CVSS3: 5.8
CVSS3: 7.5
EPSS Низкий

Описание

EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:tianocore:edk2:*:*:*:*:*:*:*:*
Версия до 202311 (включая)

EPSS

Процентиль: 58%
0.00376
Низкий

5.8 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-200
CWE-338

Связанные уязвимости

ubuntu логотип

CVE-2023-45236

CVSS3: 5.8
ubuntu
больше 1 года назад

EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

redhat логотип

CVE-2023-45236

CVSS3: 7.5
redhat
больше 1 года назад

EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

msrc логотип

CVE-2023-45236

CVSS3: 7.5
msrc
около 1 года назад

Описание отсутствует

debian логотип

CVE-2023-45236

CVSS3: 5.8
debian
больше 1 года назад

EDK2's Network Package is susceptible to a predictable TCP Initial Seq ...

github логотип

GHSA-fqc4-ffq5-4r98

CVSS3: 5.8
github
больше 1 года назад

EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

EPSS

Процентиль: 58%
0.00376
Низкий

5.8 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-200
CWE-338