Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network.
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HTianocore Edk Ii
APPTianocorewszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
DoSMemory
CWE
Referencje
Powiązane podatności
CVE-2019-0160CRITICAL9.8ten sam produkt
Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation ...
CVE-2021-28216HIGH7.8ten sam produkt
BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDa...
CVE-2018-3613HIGH7.8ten sam produkt
Logic issue in variable service module for EDK II/UDK2018/UDK2017/UDK2015 may allow an authenticated user to p...
CVE-2018-12180HIGH8.8ten sam produkt
Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalati...
CVE-2018-12179HIGH7.8ten sam produkt
Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable esca...