CVE-2022-28737

CVSS v3.1

6.5

Medium

Vector

AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions shim (affected versions not specified)

Description The issue is related to the handle image() function in the UEFI bootloader shim, which is vulnerable to a buffer overflow when processing EFI files that take into account the SizeOfRawData field. This can allow an attacker to perform out-of-bound writes into memory, potentially leading to arbitrary code execution or denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-120

Related Identifiers

ALSA-2022:5095

ALSA-2022:5099

ALT-PU-2023-4655

ALT-PU-2023-4656

ALT-PU-2023-5598

AZL-27559

AZL-35252

AZL-40910

AZL-41063

BDU:2023-05303

CESA-2022_5095

CVE-2022-28737

OESA-2022-1799

OPENSUSE-SU-2024_1368-1

RHSA-2022:5095

RHSA-2022:5096

RHSA-2022:5098

RHSA-2022:5099

RHSA-2022:5100

RHSA-2022_5095

RHSA-2022_5099

RLSA-2022:5095

RLSA-2022:5099

SUSE-SU-2023:1702-1

SUSE-SU-2023:1863-1

SUSE-SU-2023:2084-1

SUSE-SU-2023:2086-1

SUSE-SU-2023:2091-1

SUSE-SU-2023:2150-1

SUSE-SU-2023_1702-1

SUSE-SU-2023_1863-1

SUSE-SU-2023_2084-1

SUSE-SU-2023_2086-1

SUSE-SU-2023_2091-1

SUSE-SU-2023_2150-1

SUSE-SU-2024:1368-1

SUSE-SU-2024:1461-1

SUSE-SU-2024:1462-1

SUSE-SU-2024_1368-1

SUSE-SU-2024_1461-1

SUSE-SU-2024_1462-1

USN-6355-1

Affected Products

Alt Linux

Almalinux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Shim

CVE-2022-28737

Weakness Enumeration

Related Identifiers

Affected Products

References · 124