2 matches found
Updated edk2 packages fix multiples security vulnerabilities
Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access. CVE-2018-12179. Insufficient memory write check in SMM service for EDK II may allow an authenticated...
CVE-2018-12179
CVE-2018-12179 is an EDK II firmware configuration issue enabling escalation of privilege, information disclosure, or DoS via local access. Publicly referenced in multiple advisories (Astra Linux, Mageia MGASA-2021-0035, Amazon Linux 2 ALAS-2019-1290, Fedora update) alongside related CVEs (CVE-20...