VDB
DEBIAN-CVE-2023-40550
DEBIAN-CVE-2023-40550
PUBLISHED
CVSS 5.5 MEDIUM
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase.
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | shim | 15.7-1, 15.8-1~deb11u1, 15.8-1~deb10u1 |
| Debian:11 | shim | 15.6-1, 15.6-1~deb11u1, 15.7-1 |
| Debian:14 | shim | 0, 0, 0 |
| Debian:13 | shim | 0, 0, 0 |
Timeline
- Jan 29, 2024 CVE Published
- Apr 28, 2026 CVE Updated