[UPDATE] [high] EDK2 NetworkPkg IP stack implementation: Multiple vulnerabilities
An attacker from the adjacent network or a remote, anonymous attacker can exploit multiple vulnerabilities in the EDK2 NetworkPkg IP stack implementation to execute arbitrary program code, disclose confidential information, and trigger a denial of service condition.
CSIRTS triage
- What
- Multiple vulnerabilities allow an attacker to execute arbitrary code, disclose confidential information, and trigger a denial of service condition.
- Who is affected
- Adjacent network or remote, anonymous attackers can exploit these vulnerabilities.
- Urgency
- High urgency for remediation due to the severity and potential impact of exploitation.
- Action
- Update to the latest version of EDK2 NetworkPkg to address these vulnerabilities.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch EDK2 NetworkPkg
Get an email when a new EDK2 NetworkPkg advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0126
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2023-452290.94% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 57% of all scored CVEs.
- Moderate exploitation riskCVE-2023-452301.2% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 65% of all scored CVEs.
- Low exploitation riskCVE-2023-452310.85% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 54% of all scored CVEs.
- Moderate exploitation riskCVE-2023-452322.1% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 79% of all scored CVEs.
- Moderate exploitation riskCVE-2023-452332.1% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 79% of all scored CVEs.
- Moderate exploitation riskCVE-2023-452341.2% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 64% of all scored CVEs.
- Moderate exploitation riskCVE-2023-452351.2% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 65% of all scored CVEs.
- Low exploitation riskCVE-2023-452360.99% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 58% of all scored CVEs.
- Low exploitation riskCVE-2023-452370.99% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 58% of all scored CVEs.
Referenced CVEs
| CVE | CSIRTS overview | External |
|---|---|---|
| CVE-2023-45229 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45230 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45231 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45232 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45233 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45234 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45235 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45236 | coverage & exploitation status | NVD · CVE.org |
| CVE-2023-45237 | coverage & exploitation status | NVD · CVE.org |
More from CERT-Bund (BSI) Security Advisories
- medium[NEW] [medium] DENX U-Boot: Multiple vulnerabilities allow execution of arbitrary code and DoS2026-07-10
- medium[NEW] [medium] Samsung Android: Multiple vulnerabilities2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow unspecified attack2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10