Lucene search
+L

8 matches found

mscve
mscve
added 2024/09/11 7:0 a.m.6 views

Shim: interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems

...

7.4CVSS7AI score0.00432EPSS
Exploits0
redhat
redhat
added 2024/04/29 12:31 p.m.8 views

shim: Interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...

7.4CVSS7AI score0.00432EPSS
Exploits0References4
nessus
nessus
added 2024/04/23 12:0 a.m.173 views

RHEL 7 : shim (RHSA-2024:1959)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1959 advisory. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04892EPSS
Exploits0References17
nessus
nessus
added 2024/04/20 12:0 a.m.146 views

RHEL 8 : shim (RHSA-2024:1902)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1902 advisory. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04892EPSS
Exploits0References14
redhat
redhat
added 2024/04/18 1:56 a.m.4 views

shim: Interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...

7.4CVSS7AI score0.00432EPSS
Exploits0References4
nessus
nessus
added 2024/04/18 12:0 a.m.40 views

RHEL 9 : shim update (Important) (RHSA-2024:1876)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1876 advisory. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04892EPSS
Exploits0References14
nessus
nessus
added 2024/04/18 12:0 a.m.44 views

RHEL 8 : shim (RHSA-2024:1883)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1883 advisory. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04892EPSS
Exploits0References14
nessus
nessus
added 2024/04/17 12:0 a.m.68 views

RHEL 9 : shim (RHSA-2024:1835)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1835 advisory. The shim package contains a first stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

8.3CVSS7.4AI score0.04892EPSS
Exploits0References14
Rows per page
Query Builder