Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
CVSS Information
N/A
Vulnerability Type
缓冲区下溢
Vulnerability Title
Tianocore Edk2 缓冲区错误漏洞
Vulnerability Description
Tianocore Edk2是Tianocore社区的一个遵循UEFI和PI规范的跨平台固件开发环境。 TianoCore edk2存在缓冲区错误漏洞,该漏洞源于NetworkPkg/IScsiDxe 中的 IScsiHexToBin() 函数存在边界错误。能够将数据注入 edk2 和 iSCSI 目标之间的通信的远程攻击者可以在目标系统上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A