CVE-2023-45233

Опубликовано: 16 янв. 2024

Источник: redhat

CVSS3: 7.5

Описание

EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.

The Network Package in EDK2 is vulnerable to an infinite loop exploit when parsing a PadN option within the Destination Options header of IPv6. This flaw allows an unauthorized attacker to gain access and potentially result in a loss of system availability.

Отчет

The identified vulnerability in EDK2's Network Package poses a moderate risk due to an infinite loop in the Ip6IsOptionValid function, specifically when parsing a PadN option in the Destination Options header of an IPv6 packet. This flaw occurs because the addition of 0x100 to the Offset variable is truncated to a UINT8, resulting in an unmodified Offset. As a consequence of this infinite loop, the affected computer never finishes booting up.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-835

https://bugzilla.redhat.com/show_bug.cgi?id=2258694edk2: Infinite loop when parsing a PadN option in the Destination Options header

7.5 High

CVSS3

Связанные уязвимости

CVE-2023-45233

CVSS3: 7.5

ubuntu

больше 1 года назад

CVE-2023-45233

CVSS3: 7.5

nvd

больше 1 года назад

CVE-2023-45233

CVSS3: 7.5

msrc

около 1 года назад

Описание отсутствует

CVE-2023-45233

CVSS3: 7.5

debian

больше 1 года назад

EDK2's Network Package is susceptible to an infinite lop vulnerability ...

GHSA-p9h6-p7cr-7842

CVSS3: 7.5

github

больше 1 года назад

7.5 High

CVSS3