Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2023-45232

EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.

  • Published: Jan 16, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2023-45232
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
tianocore / edk2 - 202311.x