EDK2's Network Package is susceptible to a buffer overflow vulnerability when handling Server ID option from a DHCPv6 proxy Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:HTianocore Edk2
APPTianocore≤ 202311
Related vulnerabilities
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Desti...
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option fr...
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6...
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the De...
EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap...