VDB
RHSA-2023%3A2487
RHSA-2023%3A2487
PUBLISHED
CVSS 7.5 HIGH
Red Hat Security Advisory: fwupd security and bug fix update
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:enterprise_linux:9::appstream | fwupd-debugsource | 0, 0 |
| Red Hat:enterprise_linux:9::appstream | fwupd-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:9::appstream | fwupd-tests-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:9::appstream | fwupd-plugin-flashrom-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:9::baseos | fwupd-tests-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:9::baseos | fwupd-devel | 0, 0 |
| Red Hat:enterprise_linux:9::baseos | fwupd-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:9::baseos | fwupd | 0, 0 |
| Red Hat:enterprise_linux:9::crb | fwupd-plugin-flashrom | 0, 0 |
| Red Hat:enterprise_linux:9::crb | fwupd-debugsource | 0, 0 |
| Red Hat:enterprise_linux:9::appstream | fwupd-plugin-flashrom | 0, 0 |
| Red Hat:enterprise_linux:9::crb | fwupd-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:9::appstream | fwupd-devel | 0, 0 |
| Red Hat:enterprise_linux:9::baseos | fwupd-plugin-flashrom | 0, 0 |
| Red Hat:enterprise_linux:9::crb | fwupd | 0, 0 |
| Red Hat:enterprise_linux:9::crb | fwupd-tests-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:9::appstream | fwupd | 0, 0 |
| Red Hat:enterprise_linux:9::crb | fwupd-devel | 0, 0 |
| Red Hat:enterprise_linux:9::baseos | fwupd-debugsource | 0, 0 |
| Red Hat:enterprise_linux:9::baseos | fwupd-plugin-flashrom-debuginfo | 0, 0 |
…and 1 more
Timeline
- May 9, 2023 CVE Published
- Nov 22, 2025 CVE Updated
- May 1, 2026 Distribution Patch
- May 1, 2026 Distribution Patch
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:2487 advisory
- https://access.redhat.com/security/updates/classification/#moderate article
- https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.2_release_notes/index article
- https://bugzilla.redhat.com/show_bug.cgi?id=2119436 report
- https://bugzilla.redhat.com/show_bug.cgi?id=2120687 report
- https://bugzilla.redhat.com/show_bug.cgi?id=2120699 report
- https://bugzilla.redhat.com/show_bug.cgi?id=2120701 report
- https://bugzilla.redhat.com/show_bug.cgi?id=2128384 report
- https://bugzilla.redhat.com/show_bug.cgi?id=2129280 report
- https://bugzilla.redhat.com/show_bug.cgi?id=2129904 report
- https://bugzilla.redhat.com/show_bug.cgi?id=2165096 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_2487.json advisory
- https://access.redhat.com/security/cve/CVE-2022-3287 report
- https://www.cve.org/CVERecord?id=CVE-2022-3287 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-3287 advisory
- https://access.redhat.com/security/cve/CVE-2022-34301 report
- https://www.cve.org/CVERecord?id=CVE-2022-34301 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-34301 advisory
- https://eclypsium.com/2022/08/11/vulnerable-bootloaders-2022/ article
- https://kb.cert.org/vuls/id/309662 article
…and 6 more