14 matches found
EUVD-2018-4160
Malware in sbrugna...
SUSE CVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
Oracle Linux 7 : edk2 (ELSA-2020-5861)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5861 advisory. - Create new 1.3 release for OL7 which includes the following fixed CVEs: CVE-2018-12182 CVE-2019-13224 CVE-2019-13225 CVE-2019-14553 Fri May 17 2019...
Medium: edk2
Issue Overview: Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access. CVE-2018-12182 Stack overflow in XHCI for EDK II may allow an unauthenticated...
CVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
CVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
CVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
CVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
Information disclosure
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
CVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
CVE-2018-12182
CVE-2018-12182 affects the EDK II firmware/EDK II SMM subsystem across multiple vendor advisories. The root cause is an insufficient memory write check in the SMM service, which an authenticated local attacker could exploit to escalate privileges, disclose information, or cause denial of service....
CVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...
PT-2019-8876 · Intel +2 · Edk Ii +2
Name of the Vulnerable Software and Affected Versions: EDK II affected versions not specified Description: The issue is related to an insufficient memory write check in the SMM service, which may allow an authenticated user to potentially enable escalation of privilege, information disclosure,...
CVE-2016-8222
CVE-2016-8222 concerns a signed kernel driver in Lenovo ThinkPad BIOS enabling a local attacker with Windows administrator privileges to call System Management Mode (SMM) services. This can cause denial of service or allow alteration of certain BIOS variables/settings (e.g., boot sequence); BIOS ...