216.73.216.133

CVE-2026-34963

· Published 11/05/2026 23:19 · Modified 11/05/2026 23:19

Labels: CVE-2026-34963 2026-05-11CVE-2026-34963CWE-190[email protected]

Essential information

Published
11/05/2026 23:19
Modified
11/05/2026 23:19
Author
Creator
CVSS
8.6 HIGH (v3) 8.6 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

barebox version prior to 2026.04.0 contains multiple memory-safety vulnerabilities in the EFI PE loader in efi/loader/pe.c where integer overflow in virtual image size computation using 32-bit arithmetic on section VirtualAddress and size values allows undersized heap allocation, and PE section loading logic fails to validate that PointerToRawData plus copied size remains within the PE file buffer. An attacker can supply a malicious EFI PE binary via TFTP, USB, SD card, or network boot to trigger heap buffer overflow or out-of-bounds read from heap memory, potentially achieving code execution in bootloader context.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
barebox / barebox cpe:2.3:a:barebox:barebox:<2026.04.0:*:*:*:*:*:*:*

References