Skip to main content

Shim

6 CVEs product

Monthly

CVE-2023-40548 HIGH This Week

A buffer overflow was found in Shim in the 32-bit system. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Integer Overflow Shim Fedora
NVD
CVSS 3.1
7.4
EPSS
0.4%
CVE-2023-40547 HIGH This Week

A remote code execution vulnerability was found in Shim. Rated high severity (CVSS 8.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow RCE Memory Corruption Shim Enterprise Linux
NVD
CVSS 3.1
8.3
EPSS
4.9%
CVE-2014-8399 LOW POC PATCH Monitor

The default configuration in systemd-shim 8 enables the Abandon debugging clause, which allows local users to cause a denial of service via unspecified vectors. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Denial Of Service Shim
NVD GitHub
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-3677 HIGH PATCH This Week

Unspecified vulnerability in Shim might allow attackers to execute arbitrary code via a crafted MOK list, which triggers memory corruption. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE Buffer Overflow Shim
NVD
CVSS 2.0
7.5
EPSS
1.5%
CVE-2014-3676 HIGH POC This Week

Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option.". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Shim
NVD
CVSS 2.0
7.5
EPSS
5.2%
CVE-2014-3675 MEDIUM PATCH This Month

Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted DHCPv6 packet. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Information Disclosure Buffer Overflow Shim
NVD
CVSS 2.0
5.0
EPSS
3.1%
EPSS 0% CVSS 7.4
HIGH This Week

A buffer overflow was found in Shim in the 32-bit system. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Integer Overflow Shim +1
NVD
EPSS 5% CVSS 8.3
HIGH This Week

A remote code execution vulnerability was found in Shim. Rated high severity (CVSS 8.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow RCE Memory Corruption +2
NVD
EPSS 0% CVSS 2.1
LOW POC PATCH Monitor

The default configuration in systemd-shim 8 enables the Abandon debugging clause, which allows local users to cause a denial of service via unspecified vectors. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Denial Of Service Shim
NVD GitHub
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Unspecified vulnerability in Shim might allow attackers to execute arbitrary code via a crafted MOK list, which triggers memory corruption. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE Buffer Overflow Shim
NVD
EPSS 5% CVSS 7.5
HIGH POC This Week

Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option.". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE +1
NVD
EPSS 3% CVSS 5.0
MEDIUM PATCH This Month

Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted DHCPv6 packet. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Information Disclosure Buffer Overflow +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy