CVE-2022-36764

Publication date

2024-01-09 16:09:44

Family

TianoCore

State

PUBLISHED

Description

EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.