CVE-2024-38796

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-38796

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-38796.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-38796

Aliases

GHSA-xpcr-7hjq-m6qm

Downstream

DEBIAN-CVE-2024-38796

DLA-4207-1

OESA-2024-2265

RHSA-2024:10268

RHSA-2024:10272

RHSA-2024:11185

RHSA-2024:11194

RHSA-2024:11219

RHSA-2024:9921

RHSA-2024:9930

RHSA-2024:9946

RHSA-2024:9956

RLSA-2024:11185

RLSA-2024:11219

UBUNTU-CVE-2024-38796

USN-7894-1

Related

Published

2024-09-27T22:15:13.153Z

Modified

2026-03-13T11:35:41.327139Z

Severity

5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L CVSS Calculator

Summary

[none]

Details

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.

References

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-38796.json"