CVE-2024-38805 | THREATINT

Description

EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service.

PUBLISHED Reserved 2024-06-19 | Published 2025-08-12 | Updated 2025-08-12 | Assigner TianoCore

MEDIUM: 6.3CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Problem types

CWE-190 Integer Overflow or Wraparound

Product status

Default status

unaffected

Any version

affected

References

github.com/...e/edk2/security/advisories/GHSA-p7wp-52j7-6r5x

cve.org (CVE-2024-38805)

nvd.nist.gov (CVE-2024-38805)

Download JSON