CVE-2023-22449 — Vulnetix

CVE-2023-22449 PUBLISHED

BRLY-2022-038 High CVE-2023-22449 BINARLY efiXplorer team has discovered a stack overflow vulnerability that allows a local root user to access a UEFI DXE driver and execute arbitrary code.

EPSS 0.03% · 10.0th percentile

Risk Scores

EPSS Score

0.03%

10.0th percentile

Timeline

Aug 8, 2023 CVE Published
Aug 11, 2023 EPSS Score
Sep 14, 2023 EPSS Score
Oct 17, 2023 EPSS Score
Nov 20, 2023 EPSS Score
Dec 23, 2023 EPSS Score
Jan 26, 2024 EPSS Score
Feb 28, 2024 EPSS Score
Apr 2, 2024 EPSS Score
May 5, 2024 EPSS Score
Jun 8, 2024 EPSS Score
Jun 26, 2024 CVE Updated

References

Stack buffer overflow vulnerability leads to arbitrary code execution in a DXE driver on Intel platform. advisory
Stack buffer overflow vulnerability leads to arbitrary code execution in a DXE driver on Intel platform. advisory

Open in Interactive Console →