Stack-based buffer overflow in edk2

#VU95176 Stack-based buffer overflow in edk2

Cybersecurity Help s.r.o.

Published: 2024-08-02

Vulnerability identifier: #VU95176

Vulnerability risk: Low

CVSSv3.1: 5.9 [CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-12183

CWE-ID: CWE-121

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
edk2
Hardware solutions / Firmware

Vendor: TianoCore

Description

The vulnerability allows an attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in DxeCore. An attacker with physical access to the system can trigger a stack-based buffer overflow and execute arbitrary code on the target system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

edk2: edk2-stable201808 - UDK2018

External links
http://www.securityfocus.com/bid/107643
http://edk2-docs.gitbooks.io/security-advisory/content/unlimited-fv-recursion.html
http://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TQYVZRFEXSN3KS43AVH4D7QX553EZQYP/
http://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03912en_us

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Ubuntu update for edk2

Privilege escalation in EDK2