JVN#05255562: Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK

Products that use the PXE SDK sample code provided by Intel contain directory traversal and buffer overflow vulnerabilities.

Impact

Information stored by the product using the PXE SDK sample code may be viewed, or arbitrary code may be executed.

Solution

Update the software
Update according to the information provided by the product developer.

Products Affected

Products that use the PXE SDK sample may be vulnerable.

For more information, refer to the vendor information under “Vendor Status”