Medium severity5.9NVD Advisory· Published Sep 27, 2024· Updated Apr 15, 2026
CVE-2024-38796
CVE-2024-38796
Description
EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- osv-coords4 versionspkg:rpm/almalinux/edk2-aarch64pkg:rpm/almalinux/edk2-ovmfpkg:rpm/almalinux/edk2-toolspkg:rpm/almalinux/edk2-tools-doc
< 20220126gitbb1bba3d77-13.el8_10.4+ 3 more
- (no CPE)range: < 20220126gitbb1bba3d77-13.el8_10.4
- (no CPE)range: < 20220126gitbb1bba3d77-13.el8_10.4
- (no CPE)range: < 20240524-6.el9_5.3
- (no CPE)range: < 20240524-6.el9_5.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.