Published: 29/01/2024 Updated: 25/04/2024

CVSS v3 Base Score: 7.4 | Impact Score: 5.9 | Exploitability Score: 1.4

VMScore: 0

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This flaw causes memory corruption and can lead to a crash or data integrity issues during the boot phase.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat shim
redhat shim 15.8
fedoraproject fedora 39

Debian Bug report logs - #1061519 shim: CVE-2023-40546 CVE-2023-40547 CVE-2023-40548 CVE-2023-40549 CVE-2023-40550 CVE-2023-40551 Package: src:shim; Maintainer for src:shim is Debian EFI team <debian-efi@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 25 Jan 2024 20:57:01 UTC Sever ...

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-40548

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect