Acknowledged
Created: Apr 7, 2025
Updated: Jun 13, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace
EDK2 contains a vulnerability in the HashPeImageByType(). A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability.
CREATE(Triage):(User=admin) CVE-2024-38797 (https://nvd.nist.gov/vuln/detail/CVE-2024-38797)
