Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-45229

Опубликовано: 16 янв. 2024
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 6.5

Описание

EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

not-affected

2023.11-6
esm-apps/bionic

needs-triage

esm-apps/xenial

needs-triage

esm-infra/focal

needed

focal

ignored

end of standard support, was needed
jammy

released

2022.02-3ubuntu0.22.04.2
lunar

ignored

end of life, was needs-triage
mantic

ignored

end of life, was needed
noble

not-affected

2023.11-6

Показывать по

Ссылки на источники

EPSS

Процентиль: 34%
0.00134
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2023-45229

CVSS3: 6.5
redhat
почти 2 года назад

EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

nvd логотип

CVE-2023-45229

CVSS3: 6.5
nvd
почти 2 года назад

EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

msrc логотип

CVE-2023-45229

CVSS3: 6.5
msrc
больше 1 года назад

Описание отсутствует

debian логотип

CVE-2023-45229

CVSS3: 6.5
debian
почти 2 года назад

EDK2's Network Package is susceptible to an out-of-bounds read vulner ...

fstec логотип

BDU:2024-00459

CVSS3: 6.5
fstec
почти 2 года назад

Уязвимость функции Dhcp6HandleAdvertiseMsg (NetworkPkg/Dhcp6Dxe/Dhcp6Io.c) библиотеки Tianocore edk2, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 34%
0.00134
Низкий

6.5 Medium

CVSS3

Уязвимость CVE-2023-45229