Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.4 views

SUSE SLES12 Security Update : shim (SUSE-SU-2026:1414-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:1414-1 advisory. shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test...

6.7CVSS5.8AI score0.00378EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2026/04/16 2:25 p.m.7 views

Security update for shim

This update for shim fixes the following issues: shim is updated to version 16.1: shimstartimage: fix guid/handle pairing when uninstalling protocols Fix uncompressed ipv6 netboot fix test segfaults caused by uninitialized memory SbatLevelVariable.txt: minor typo fix. Realloc needs to allocate on...

6.7CVSS6.6AI score0.00378EPSS
Exploits1References6
OSV
OSV
added 2026/03/05 2:21 p.m.4 views

OPENSUSE-RU-2026:20325-1 Recommended update for shim

This update for shim fixes the following issues: This update for shim fixes the following issues: shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test segfaults caused by uninitialized memory -...

6.7CVSS5.8AI score0.00378EPSS
Exploits1References5
OSV
OSV
added 2026/03/02 8:11 a.m.3 views

SUSE-SU-2026:0741-1 Security update for shim

This update for shim fixes the following issues: shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test segfaults caused by uninitialized memory - SbatLevelVariable.txt: minor typo fix. - Realloc needs to...

6.7CVSS5.8AI score0.00378EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2024/12/19 12:0 a.m.14 views

edk2:20240524 security update

20240524-6.0.1.el95.3 - edk2-OvmfPkg-Rerun-dispatcher-after-initializing-virtio-r.patch RHEL-58631 - Resolves: RHEL-58631 Regression HTTP Boot fails to work with edk2-ovmf-20231122-6.el94.2 and greater - edk2-OvmfPkg-ArmVirtPkg-Add-a-Fallback-RNG-RH-only.patch RHEL-66230 - Resolves: RHEL-66230...

5.9CVSS7AI score0.0037EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/19 12:0 a.m.12 views

Oracle Linux 9 : edk2:20240524 (ELSA-2024-11219)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11219 advisory. 20240524-6.0.1.el95.3 - edk2-OvmfPkg-Rerun-dispatcher-after-initializing-virtio-r.patch RHEL-58631 - Resolves: RHEL-58631 Regression HTTP Boot fails to work wi...

5.9CVSS6.4AI score0.0037EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2024/09/30 2:30 p.m.9 views

edk2 bug fix and enhancement update

An update is available for edk2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list EDK Embedded Development Kit is a project to enable UEFI support for Virtual...

7.1AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/08/13 7:0 a.m.34 views

Redhat: CVE-2023-40547 Shim - RCE in HTTP boot support may lead to secure boot bypass

...

8.3CVSS7AI score0.04852EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/04/20 12:0 a.m.144 views

RHEL 8 : shim (RHSA-2024:1902)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1902 advisory. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04852EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2024/04/18 5:42 p.m.5 views

shim: RCE in http boot support may lead to Secure Boot bypass

A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...

8.3CVSS7.1AI score0.04852EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/04/18 1:56 a.m.11 views

shim: RCE in http boot support may lead to Secure Boot bypass

A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...

8.3CVSS7.1AI score0.04852EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/18 12:0 a.m.40 views

RHEL 9 : shim update (Important) (RHSA-2024:1876)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1876 advisory. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04852EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2024/04/17 12:0 a.m.68 views

RHEL 9 : shim (RHSA-2024:1835)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1835 advisory. The shim package contains a first stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04852EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2024/04/16 1:38 p.m.3 views

shim: RCE in http boot support may lead to Secure Boot bypass

A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...

8.3CVSS7.1AI score0.04852EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2024/02/07 1:33 p.m.63 views

Critical Boot Loader Vulnerability in Shim Impacts Nearly All Linux Distros

The maintainers of shim have released version 15.8 to address six security flaws, including a critical bug that could pave the way for remote code execution under specific circumstances. Tracked as CVE-2023-40547 CVSS score: 9.8, the vulnerability could be exploited to achieve a Secure Boot bypas...

8.3CVSS7AI score0.04852EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/01/16 4:15 p.m.49 views

CVE-2023-45232

EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability...

7.5CVSS7AI score0.02084EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2024/01/16 4:15 p.m.49 views

CVE-2023-45231

EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing Neighbor Discovery Redirect message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality...

6.5CVSS7AI score0.00849EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2024/01/16 4:15 p.m.34 views

CVE-2023-45229

EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IANA or IATA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality...

6.5CVSS7AI score0.00937EPSS
Exploits1References4
Rockylinux
Rockylinux
added 2023/10/06 11:10 p.m.17 views

grub2 bug fix update

An update is available for grub2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a...

6.8AI score
Exploits0
Rows per page
Query Builder