EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:HTianocore Edk2
APPTianocore≤ 202311
Related vulnerabilities
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option fr...
EDK2's Network Package is susceptible to a buffer overflow vulnerability when handling Server ID option ...
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the De...
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Desti...
EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap...