Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2023-45233
Modified
More InfoOfficial Page
Source-infosec@edk2.groups.io
View Known Exploited Vulnerability (KEV) details
Published At-16 Jan, 2024 | 16:15
Updated At-13 Feb, 2025 | 18:15

EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CPE Matches
tianocore
tianocore
>>edk2>>Versions up to 202311(inclusive)
cpe:2.3:a:tianocore:edk2:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-835Secondaryinfosec@edk2.groups.io
CWE-835Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://packetstormsecurity.com/files/176574/PixieFail-Proof-Of-Concepts.htmlinfosec@edk2.groups.io
Third Party Advisory
VDB Entry
http://www.openwall.com/lists/oss-security/2024/01/16/2infosec@edk2.groups.io
Mailing List
https://github.com/tianocore/edk2/security/advisories/GHSA-hc6x-cw6p-gj7hinfosec@edk2.groups.io
Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJ42V7O7F4OU6R7QSQQECLB6LDHKZIMQ/infosec@edk2.groups.io
N/A
https://security.netapp.com/advisory/ntap-20240307-0011/infosec@edk2.groups.io
N/A
http://packetstormsecurity.com/files/176574/PixieFail-Proof-Of-Concepts.htmlaf854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
VDB Entry
http://www.openwall.com/lists/oss-security/2024/01/16/2af854a3a-2127-422b-91ae-364da2661108
Mailing List
https://github.com/tianocore/edk2/security/advisories/GHSA-hc6x-cw6p-gj7haf854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJ42V7O7F4OU6R7QSQQECLB6LDHKZIMQ/af854a3a-2127-422b-91ae-364da2661108
N/A
https://security.netapp.com/advisory/ntap-20240307-0011/af854a3a-2127-422b-91ae-364da2661108
N/A
Change History
0Changes found
Details not found