EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing Neighbor Discovery Redirect message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
Published: 2024-01-16
Updated: 2024-03-13
Named Vulnerability: PixieFailNamed Vulnerability: PixieFAIL
Base Score: 6.1
Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:N/A:N
Severity: Medium
Base Score: 6.5
Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity: Medium
EPSS: 0.00152