VDB
RHSA-2023%3A4128
RHSA-2023%3A4128
PUBLISHED
CVSS 5.900000095367432 MEDIUM
An update for edk2 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
5.900000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| edk2 | ||
| Red Hat Enterprise Linux AppStream EUS (v.8.6) |
Exploit Intelligence
- Trinadh465/Openssl-1.1.1g_CVE-2022-4304 (github-poc)
- Trinadh465/Openssl-1.1.1g_CVE-2022-4304 (github-poc)
- Trinadh465/Openssl-1.1.1g_CVE-2022-4304 (github-poc)
- https://access.redhat.com/errata/RHSA-2023:4128 (circl)
- https://access.redhat.com/security/updates/classification/#important (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=2164440 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=2164487 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=2164492 (circl)
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4128.json (circl)
- risk_calculator.cpp (github-poc)
…and 20 more exploits
Timeline
- Jul 18, 2023 CVE Published
- Nov 25, 2024 CVE Updated
- Apr 23, 2026 Distribution Patch
- Apr 23, 2026 Distribution Patch
- Apr 23, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:4128 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://bugzilla.redhat.com/show_bug.cgi?id=2164440 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2164487 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2164492 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4128.json advisory