CVE-2023-45232

EUVD-2023-49538
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This
 vulnerability can be exploited by an attacker to gain unauthorized 
access and potentially lead to a loss of Availability.
Infinite Loop
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
Affected Products (NVD)
VendorProductVersion
tianocoreedk2
𝑥
≤ 202311
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
edk2
bookworm
2022.11-6+deb12u1
fixed
bookworm (security)
2022.11-6+deb12u1
fixed
bullseye
no-dsa
bullseye (security)
vulnerable
buster
no-dsa
sid
2024.11-3
fixed
trixie
2024.11-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
edk2
bionic
needs-triage
focal
Fixed 0~20191122.bd85bf54-2ubuntu3.5
released
jammy
Fixed 2022.02-3ubuntu0.22.04.2
released
lunar
ignored
mantic
Fixed 2023.05-2ubuntu0.1
released
noble
not-affected
oracular
not-affected
trusty
ignored
xenial
needs-triage
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
ovmf-201911
suse enterprise server 15 SP2
150200.7.30.1
fixed
ovmf-202008
suse enterprise server 15 SP3
150300.10.26.1
fixed
ovmf-202202
suse enterprise sap 15 SP4
150400.5.15.1
fixed
suse enterprise server 15 SP4
150400.5.15.1
fixed
ovmf-202208
suse enterprise server 15 SP5
150500.6.6.1
fixed
ovmf-202308
suse enterprise sap 15 SP6
150600.5.9.1
fixed
suse enterprise server 15 SP6
150600.5.9.1
fixed
ovmf-202408
suse enterprise sap 15 SP7
150700.1.3
fixed
suse enterprise server 15 SP7
150700.1.3
fixed
ovmf-tools-201911
suse enterprise server 15 SP2
150200.7.30.1
fixed
ovmf-tools-202008
suse enterprise server 15 SP3
150300.10.26.1
fixed
ovmf-tools-202202
suse enterprise sap 15 SP4
150400.5.15.1
fixed
suse enterprise server 15 SP4
150400.5.15.1
fixed
ovmf-tools-202208
suse enterprise server 15 SP5
150500.6.6.1
fixed
ovmf-tools-202308
suse enterprise sap 15 SP6
150600.5.9.1
fixed
suse enterprise server 15 SP6
150600.5.9.1
fixed
ovmf-tools-202408
suse enterprise sap 15 SP7
150700.1.3
fixed
suse enterprise server 15 SP7
150700.1.3
fixed
qemu-ovmf-x86_64-201911
suse enterprise server 15 SP2
150200.7.30.1
fixed
qemu-ovmf-x86_64-202008
suse enterprise server 15 SP3
150300.10.26.1
fixed
qemu-ovmf-x86_64-202202
suse enterprise sap 15 SP4
150400.5.15.1
fixed
suse enterprise server 15 SP4
150400.5.15.1
fixed
qemu-ovmf-x86_64-202208
suse enterprise server 15 SP5
150500.6.6.1
fixed
qemu-ovmf-x86_64-202308
suse enterprise sap 15 SP6
150600.5.9.1
fixed
suse enterprise server 15 SP6
150600.5.9.1
fixed
qemu-ovmf-x86_64-202408
suse enterprise sap 15 SP7
150700.1.3
fixed
suse enterprise server 15 SP7
150700.1.3
fixed
qemu-uefi-aarch64-202008
suse enterprise server 15 SP3
150300.10.26.1
fixed
qemu-uefi-aarch64-202202
suse enterprise server 15 SP4
150400.5.15.1
fixed
qemu-uefi-aarch64-202208
suse enterprise server 15 SP5
150500.6.6.1
fixed
qemu-uefi-aarch64-202308
suse enterprise sap 15 SP6
150600.5.9.1
fixed
suse enterprise server 15 SP6
150600.5.9.1
fixed
qemu-uefi-aarch64-202408
suse enterprise sap 15 SP7
150700.1.3
fixed
suse enterprise server 15 SP7
150700.1.3
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
edk2-aarch64
RHEL 8
0:20220126gitbb1bba3d77-13.el8_10
fixed
RHEL 8.8 AUS
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 8.8 E4S
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 8.8 EUS
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 8.8 TUS
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 9
0:20231122-6.el9
fixed
edk2-ovmf
RHEL 8
0:20220126gitbb1bba3d77-13.el8_10
fixed
RHEL 8.8 AUS
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 8.8 E4S
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 8.8 EUS
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 8.8 TUS
0:20220126gitbb1bba3d77-4.el8_8.6
fixed
RHEL 9
0:20231122-6.el9
fixed
edk2-tools
RHEL 9
0:20231122-6.el9
fixed
edk2-tools-doc
RHEL 9
0:20231122-6.el9
fixed
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/176574/PixieFail-Proof-Of-Concepts.html
http://www.openwall.com/lists/oss-security/2024/01/16/2
https://github.com/tianocore/edk2/security/advisories/GHSA-hc6x-cw6p-gj7h
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJ42V7O7F4OU6R7QSQQECLB6LDHKZIMQ/
https://security.netapp.com/advisory/ntap-20240307-0011/
http://packetstormsecurity.com/files/176574/PixieFail-Proof-Of-Concepts.html
http://www.openwall.com/lists/oss-security/2024/01/16/2
https://github.com/tianocore/edk2/security/advisories/GHSA-hc6x-cw6p-gj7h
https://lists.debian.org/debian-lts-announce/2025/06/msg00007.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJ42V7O7F4OU6R7QSQQECLB6LDHKZIMQ/
https://security.netapp.com/advisory/ntap-20240307-0011/
https://www.kb.cert.org/vuls/id/132380