CVE-2023-40549

Updated: 2024-02-06 06:58:12.684729

Description:

An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 8.4 ELS shim 15-15 5.5 MEDIUM In Progress 2024-02-28 13:09:42
CentOS 8.5 ELS shim 15-15 5.5 MEDIUM In Progress 2024-02-28 13:09:42