Microsoft Windows: CVE-2023-40547: Redhat: CVE-2023-40547 Shim - RCE in HTTP boot support may lead to secure boot bypass
Description
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete system compromise. This flaw is only exploitable during the early boot phase, an attacker needs to perform a Man-in-the-Middle or compromise the boot server to be able to exploit this vulnerability successfully.
Solution(s)
- microsoft-windows-windows_10-1507-kb5041782
- microsoft-windows-windows_10-1607-kb5041773
- microsoft-windows-windows_10-1809-kb5041578
- microsoft-windows-windows_10-21h2-kb5041580
- microsoft-windows-windows_10-22h2-kb5041580
- microsoft-windows-windows_11-21h2-kb5041592
- microsoft-windows-windows_11-22h2-kb5041585
- microsoft-windows-windows_11-23h2-kb5041585
- microsoft-windows-windows_11-24h2-kb5041571
- microsoft-windows-windows_server_2012-kb5041851
- microsoft-windows-windows_server_2012_r2-kb5041828
- microsoft-windows-windows_server_2016-1607-kb5041773
- microsoft-windows-windows_server_2019-1809-kb5041578
- microsoft-windows-windows_server_2022-21h2-kb5041160
- microsoft-windows-windows_server_2022-22h2-kb5041160
- microsoft-windows-windows_server_2022-23h2-kb5041573
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center