Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
RedhatShim

10 matches found

CVE
CVEadded 2023/07/20 1:15 a.m.522 views

CVE-2022-28737

There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code ...

7.8CVSS7.6AI score0.00021EPSS
CVE
CVEadded 2024/01/25 4:15 p.m.302 views

CVE-2023-40547

A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete syst...

8.3CVSS8.3AI score0.03784EPSS
CVE
CVEadded 2024/01/29 3:15 p.m.287 views

CVE-2023-40548

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw...

7.4CVSS7.8AI score0.00036EPSS
CVE
CVEadded 2024/01/29 5:15 p.m.240 views

CVE-2023-40546

A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an error message to the user; however, the number of parameters used by the logging function doesn't match the format string used by it, leading to a crash ...

6.2CVSS6.2AI score0.00028EPSS
CVE
CVEadded 2024/01/29 5:15 p.m.170 views

CVE-2023-40549

An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service.

6.2CVSS6AI score0.00028EPSS
CVE
CVEadded 2024/01/29 5:15 p.m.170 views

CVE-2023-40550

An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase.

5.5CVSS6.2AI score0.00027EPSS
CVE
CVEadded 2024/01/29 5:15 p.m.167 views

CVE-2023-40551

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase.

5.1CVSS7AI score0.00017EPSS
CVE
CVEadded 2014/10/22 2:55 p.m.39 views

CVE-2014-3675

Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted DHCPv6 packet.

5CVSS6.3AI score0.03051EPSS
CVE
CVEadded 2014/10/22 2:55 p.m.38 views

CVE-2014-3676

Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option."

7.5CVSS7.8AI score0.05165EPSS
CVE
CVEadded 2014/10/22 2:55 p.m.35 views

CVE-2014-3677

Unspecified vulnerability in Shim might allow attackers to execute arbitrary code via a crafted MOK list, which triggers memory corruption.

7.5CVSS7.2AI score0.01453EPSS