vulnerability
Oracle Linux: CVE-2024-38796: ELSA-2024-11185: edk2:20220126gitbb1bba3d77 security update (MODERATE) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:A/AC:M/Au:S/C:P/I:C/A:P) | Sep 27, 2024 | Dec 18, 2024 | Dec 3, 2025 |
Severity
6
CVSS
(AV:A/AC:M/Au:S/C:P/I:C/A:P)
Published
Sep 27, 2024
Added
Dec 18, 2024
Modified
Dec 3, 2025
Description
EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.
A flaw was found in the EDK2 package. This flaw allows an attacker to cause memory corruption due to an overflow via an adjacent network. This issue may lead to loss of confidentiality, integrity, and availability.
A flaw was found in the EDK2 package. This flaw allows an attacker to cause memory corruption due to an overflow via an adjacent network. This issue may lead to loss of confidentiality, integrity, and availability.
Solutions
oracle-linux-upgrade-edk2-aarch64oracle-linux-upgrade-edk2-ovmforacle-linux-upgrade-edk2-toolsoracle-linux-upgrade-edk2-tools-doc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.