Lucene search
+L

28 matches found

RedHat Linux
RedHat Linux
added 2024/02/28 5:32 a.m.9 views

edk2: Buffer overflow in the DHCPv6 client via a long Server ID option

A security flaw was identified in EDK2, the open-source reference implementation of the UEFI specification, involving a buffer overflow vulnerability. This particular weakness enables an unauthorized attacker within the vicinity of the network to transmit a specifically crafted DHCPv6 message...

8.8CVSS6.3AI score0.01223EPSS
Exploits1References6
OSV
OSV
added 2024/01/16 4:15 p.m.11 views

AZL-39490 CVE-2023-45235 affecting package edk2 for versions less than 20230301gitf80f052277c8-40

EDK2's Network Package is susceptible to a buffer overflow vulnerability when handling Server ID option from a DHCPv6 proxy Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or...

8.8CVSS7AI score0.01223EPSS
Exploits1References1
OSV
OSV
added 2024/01/16 4:15 p.m.9 views

AZL-39106 CVE-2023-45230 affecting package edk2 for versions less than 20230301gitf80f052277c8-40

EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability...

8.8CVSS7AI score0.01223EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.2 views

EDK2 Buffer Error Vulnerability

EDK2 is a set of cross-platform firmware development environments from the Tianocore community based on the UEFI and PI specifications. A security vulnerability exists in EDK2 that stems from Network Package's susceptibility to a buffer overflow vulnerability when handling the server ID option in...

8.8CVSS7.5AI score0.01223EPSS
Exploits1References7
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.3 views

EDK2 Buffer Error Vulnerability

EDK2 is a cross-platform firmware development environment from the Tianocore community based on the UEFI and PI specifications. A security vulnerability exists in EDK2 that stems from Network Package being susceptible to a buffer overflow vulnerability due to the long server ID option in the DHCP...

8.8CVSS7.5AI score0.01223EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2022/11/21 12:0 a.m.5 views

PT-2022-24800 · Immudb · Immudb

Name of the Vulnerable Software and Affected Versions: immudb versions prior to 1.4.1 Description: immudb is a database with built-in cryptographic proof and verification. immudb client SDKs use the server's UUID to distinguish between different server instances, allowing the client to connect to...

5.9CVSS5.5AI score0.00261EPSS
Exploits0References12
OSV
OSV
added 2020/01/29 3:15 a.m.5 views

CVE-2019-20217

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via the urn: to the M-SEARCH method in ssdpcgi in /htdocs/cgibin, because SERVERID is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an attack...

9.8CVSS7.6AI score0.03673EPSS
Exploits0References3
Nmap
Nmap
added 2012/01/24 7:54 p.m.217 views

broadcast-dhcp6-discover NSE Script

Sends a DHCPv6 request Solicit to the DHCPv6 multicast address, parses the response, then extracts and prints the address along with any options returned by the server. The script requires Nmap to be run in privileged mode as it binds the socket to a privileged port udp/546. See also:...

10CVSS0.99448EPSS
Exploits33
Rows per page
Query Builder