Vulnerabilities (CVE)

Vendor filter

Tianocore Subscribe

Filter

9 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-3613 1 Tianocore 1 Edk Ii 2019-10-03 4.6
Logic issue in variable service module for EDK II/UDK2018/UDK2017/UDK2015 may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
CVE-2018-12183 1 Tianocore 1 Edk Ii 2019-10-03 4.6
Stack overflow in DxeCore for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
CVE-2018-12180 2 Tianocore, Opensuse 2 Edk Ii, Leap 2019-10-03 6.8
Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.
CVE-2019-0160 2 Tianocore, Opensuse 2 Edk Ii, Leap 2019-08-06 7.5
Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access.
CVE-2019-0161 1 Tianocore 1 Edk Ii 2019-05-22 2.1
Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access.
CVE-2018-12182 1 Tianocore 1 Edk Ii 2019-04-11 4.6
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
CVE-2018-12181 1 Tianocore 1 Edk Ii 2019-04-11 3.6
Stack overflow in corrupted bmp for EDK II may allow unprivileged user to potentially enable denial of service or elevation of privilege via local access.
CVE-2018-12179 1 Tianocore 1 Edk Ii 2019-04-11 4.6
Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
CVE-2018-12178 1 Tianocore 1 Edk Ii 2019-04-11 6.4
Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network.