CVE-2023-22356 — Vulnetix

CVE-2023-22356 PUBLISHED

BRLY-2022-040 Medium CVE-2023-22356 BINARLY efiXplorer team has discovered a stack memory contents leak / information disclosure vulnerability that allows a potential attacker to write stack memory to NVRAM variable.

EPSS 0.04% · 11.8th percentile

Risk Scores

EPSS Score

0.04%

11.8th percentile

Timeline

Aug 8, 2023 CVE Published
Aug 11, 2023 EPSS Score
Sep 14, 2023 EPSS Score
Oct 17, 2023 EPSS Score
Nov 20, 2023 EPSS Score
Dec 23, 2023 EPSS Score
Jan 26, 2024 EPSS Score
Feb 28, 2024 EPSS Score
Apr 2, 2024 EPSS Score
May 5, 2024 EPSS Score
Jun 8, 2024 EPSS Score
Jun 26, 2024 CVE Updated

References

The stack memory contents leak / information disclosure vulnerability in DXE driver. advisory
The stack memory contents leak / information disclosure vulnerability in DXE driver. advisory

Open in Interactive Console →