CVE-2021-38575

Name
CVE-2021-38575
Description
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
NVD Severity
high
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://bugzilla.tianocore.org/show_bug.cgi?id=3356

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:tianocore:edk2:*:*:*:*:*:*:*:* edk2 >= None <= 202105

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
edk2 3.14-community 0.0.202011-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
edk2 3.15-community 0.0.202011-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
edk2 3.16-community 0.0.202202-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
edk2 3.17-community 0.0.202208-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
edk2 3.18-community 0.0.202302-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
edk2 3.19-community 0.0.202308-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
edk2 edge-community 0.0.202308-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
edk2 3.20-community 0.0.202308-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable