Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Infinite loop in EDK II Network Package
Vulnerability Description
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
不可达退出条件的循环(无限循环)
Vulnerability Title
EDK2 安全漏洞
Vulnerability Description
EDK2是Tianocore社区的一套基于UEFI和PI规范的跨平台固件开发环境。 EDK2 存在安全漏洞,该漏洞源于 Network Package 在解析 IPv6 目标选项标头中的未知选项时容易受到无限循环漏洞的影响。
CVSS Information
N/A
Vulnerability Type
N/A