Name of the Vulnerable Software and Affected Versions: libspdm (affected versions not specified)

Description: The issue is related to a heap-buffer-overflow read. Technical details about the crash include the libspdm copy mem function and the libspdm get response chunk send function. No information is provided about the estimated number of potentially affected devices or real-world incidents.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.