14 matches found
Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2026-1528)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ovmf-202505-2.1 on GA media (moderate)
ovmf-202505-2.1 on GA media Announcement ID: openSUSE-SU-2025:15255-1 Rating: moderate Cross-References: CVE-2024-38797 CVE-2024-38805 CVSS scores: CVE-2024-38797 SUSE : 4.6 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L CVE-2024-38797 SUSE : 5.1...
Medium: edk2
Issue Overview: EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability. CVE-2024-38797...
Medium: edk2
Issue Overview: EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability. CVE-2024-38797...
OESA-2025-1503 edk2 security update
EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent...
Linux Distros Unpatched Vulnerability : CVE-2024-38797
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent...
CVE-2024-38797
A flaw was found in EDK2. This vulnerability allows an attacker to cause an out-of-bounds read, potentially leading to a loss of integrity and/or availability via a crafted data pointer and length sent over an adjacent network. Mitigation Mitigation for this issue is either not available or the...
CVE-2024-38797
EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...
CVE-2024-38797
EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...
CVE-2024-38797
creationtimestamp| type| source ---|---|--- 2025-04-07 17:45:30+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10743 2025-04-07 21:12:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmausmwlmp2o 2025-04-07 21:15:30+00:00| seen|...
CVE-2024-38797
CVE-2024-38797 is a HashPeImageByType() read-bounds vulnerability in EDK2. Multiple advisories (EulerOS, Oracle Linux, Ubuntu, TencentOS) report that a corrupted data pointer/length sent over adjacent network can cause read out of bounds, with potential impact to integrity and availability. Explo...
CVE-2024-38797 Out-of-bounds Read in HashPeImageByType()
EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...
CVE-2024-38797 Out-of-bounds Read in HashPeImageByType()
EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...
CVE-2024-38797
EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...