Xvl00Per

#11773of 53,632
23.4Total CVSS
Vulnerabilities · 3
High
3
PT-2024-1801
7.8
2024-01-09
Edk2 · Edk2 · CVE-2022-36764
**Name of the Vulnerable Software and Affected Versions** EDK2 (affected versions not specified) **Description** The issue is related to a heap buffer overflow vulnerability in the `Tcg2MeasurePeImage()` function. This vulnerability can be triggered via a local network, potentially compromising confidentiality, integrity, and/or availability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2024-1802
7.8
2024-01-09
Edk2 · Edk2 · CVE-2022-36763
**Name of the Vulnerable Software and Affected Versions** EDK2 (affected versions not specified) **Description** The issue is related to a heap buffer overflow vulnerability in the `Tcg2MeasureGptTable()` function. This vulnerability can be triggered via a local network, potentially compromising confidentiality, integrity, and/or availability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2024-1803
7.8
2024-01-09
Edk2 · Edk2 · CVE-2022-36765
**Name of the Vulnerable Software and Affected Versions** EDK2 (affected versions not specified) **Description** The issue is related to the CreateHob() function in EDK2, which is susceptible to an integer overflow that can lead to a buffer overflow. This can be triggered via a local network, potentially compromising confidentiality, integrity, and/or availability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.