Vulnetix
Try Vulnetix Request Demo
CVE-2023-45230 PUBLISHED CVSS 8.300000190734863 HIGH

EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.

EPSS 0.31% · 53.7th percentile

Risk Scores

CVSS v3.1
8.300000190734863
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H/E:P/RL:O/RC:C
EPSS Score
0.31%
53.7th percentile

Affected Products

VendorProductVersions
ABBB&R Industrial Automation GmbH PPC2200 <1.35
ABBABB PPC900 <2.16
ABBB&R Industrial Automation GmbH APC910 <=1.25
ABBABB MPC3100 <1.24
ABBABB PPC3100 <1.45
ABBABB APC3100 <1.45
ABBABB APC2200 <1.35
ABBB&R Industrial Automation GmbH APC2200 <1.35
ABBABB APC910 <=1.25
ABBB&R Industrial Automation GmbH MPC3100 <1.24
ABBB&R Industrial Automation GmbH APC4100 <1.09
ABBABB PPC1200 <1.14
ABBB&R Industrial Automation GmbH PPC900 <2.16
ABBB&R Industrial Automation GmbH C80 <1.14
ABBB&R Industrial Automation GmbH APC3100 <1.45
ABBABB PPC2200 <1.35
ABBB&R Industrial Automation GmbH PPC1200 <1.14
ABBB&R Industrial Automation GmbH PPC3100 <1.45
ABBABB APC4100 <1.09
ABBABB C80 <1.14

Timeline

References

Open in Interactive Console →