Shim Security Vulnerabilities and Issues — Shim CVE List

Lucene search

RedhatShim

4 matches found

CVE•added 2023/07/20 1:15 a.m.•524 views

CVE-2022-28737

There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code ...

7.8CVSS7.6AI score0.00021EPSS

CVE•added 2024/01/29 3:15 p.m.•289 views

CVE-2023-40548

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw...

7.4CVSS7.8AI score0.00035EPSS

CVE•added 2014/10/22 2:55 p.m.•38 views

CVE-2014-3676

Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option."

7.5CVSS7.8AI score0.05165EPSS

CVE•added 2014/10/22 2:55 p.m.•35 views

CVE-2014-3677

Unspecified vulnerability in Shim might allow attackers to execute arbitrary code via a crafted MOK list, which triggers memory corruption.

7.5CVSS7.2AI score0.01453EPSS