CVE-2022-36764 Information

Description

EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality integrity and/or availability.

Reference

https://github.com/tianocore/edk2/security/advisories/GHSA-4hcq-p8q8-hj8j