cve/CVE-2023-45232.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 18:27:17 +00:00

0xMarcio 4bc2a1b403 Update CVE sources 2024-08-08 18:49

2024-08-08 18:49:29 +00:00

1.0 KiB

Raw Permalink Blame History

CVE-2023-45232

Description

EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.

POC

Reference

http://packetstormsecurity.com/files/176574/PixieFail-Proof-Of-Concepts.html

Github

https://github.com/1490kdrm/vuln_BIOs
https://github.com/fkie-cad/nvd-json-data-feeds
https://github.com/opencomputeproject/OCP-OSF-Aptio_Community_Edition
https://github.com/quarkslab/pixiefail

1.0 KiB Raw Permalink Blame History

CVE-2023-45232

Description

POC

Reference

Github

1.0 KiB

Raw Permalink Blame History