Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.24 views

Oracle Linux 8 : edk2 (ELSA-2019-3338)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3338 advisory. 20190308git89910a39dcfd-6.el8 - edk2-ArmVirtPkg-silence-DEBUGVERBOSE-masking-0x00400000-.patch bz1714446 -...

9.8CVSS7AI score0.01338EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.29 views

Oracle Linux 7 : edk2 (ELSA-2019-4785)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2019-4785 advisory. 1:1.2-5.el7 - Update spec file to remove 'modprobe kvm-intel' and remove --enable-kvm arg to ovmfvarsgenerator so qemu will not require kvm kernel...

9.1CVSS7.7AI score0.93838EPSS
Exploits12References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2019:0738-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6CVSS7.4AI score0.00425EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/05/01 12:0 a.m.38 views

Ubuntu 16.04 LTS / 18.04 LTS : EDK II vulnerabilities (USN-4349-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4349-1 advisory. A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of...

9.1CVSS7.3AI score0.02271EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2020/05/01 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-4349-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.02271EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2020/04/30 10:54 p.m.80 views

USN-4349-1: EDK II vulnerabilities

A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. CVE-2018-12178 A buffer overflow was discovered in BlockIo service. An...

9.1CVSS7.3AI score0.02271EPSS
Exploits0
Cent OS
Cent OS
added 2019/08/30 3:50 a.m.212 views

OVMF security update

CentOS Errata and Security Advisory CESA-2019:2125 An update for ovmf is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS7.3AI score0.03418EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2019/08/30 12:0 a.m.37 views

CentOS 7 : ovmf (CESA-2019:2125)

An update for ovmf is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

9.8CVSS7.5AI score0.03418EPSS
Exploits4References11
Tenable Nessus
Tenable Nessus
added 2019/08/27 12:0 a.m.35 views

Scientific Linux Security Update : ovmf on 7.x (noarch) (2019:2125)

The remote Scientific Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the SLSA-2019:2125-1 advisory. Security Fixes: edk2: Privilege escalation via processing of malformed files in TianoCompress.c CVE-2017-5731 edk2: Privilege escalation via...

9.8CVSS7.6AI score0.03418EPSS
Exploits4References7
Amazon
Amazon
added 2019/08/23 12:0 a.m.55 views

Important: edk2

Issue Overview: A missing check leads to an out-of-bounds read and write flaw in NetworkPkg/DnsDxe as shipped in edk2, when it parses DNS responses. A remote attacker who controls the DNS server used by the vulnerable firmware may use this flaw to make the system crash. CVE-2018-3613 improper DNS...

9.1CVSS8.1AI score0.02271EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.32 views

openSUSE Security Update : ovmf (openSUSE-2019-1172)

This update for ovmf fixes the following issues : Security issues fixed : - CVE-2019-0160: Fixed multiple buffer overflows in UDF-related codes in MdeModulePkg\Universal\Disk\PartitionDxe\Udf.c and MdeModulePkg\Universal\Disk\UdfDxe bsc1130267. - CVE-2018-12181: Fixed a stack-based buffer overflo...

9.8CVSS7.2AI score0.01338EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2019/04/05 12:0 a.m.133 views

Security update for ovmf (moderate)

openSUSE Security Update: Security update for ovmf Announcement ID: openSUSE-SU-2019:1139-1 Rating: moderate References: 1128503 Cross-References: CVE-2018-12181 Affected Products: openSUSE Leap 42.3 An update that fixes one vulnerability is now available. Description: This update for ovmf fixes...

6CVSS7.5AI score0.00425EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/04/05 12:0 a.m.31 views

openSUSE Security Update : ovmf (openSUSE-2019-1139)

This update for ovmf fixes the following issue : Security issue fixed : - CVE-2018-12181: Fixed a stack-based buffer overflow in the HII database when a corrupted Bitmap was used bsc1128503. This update was imported from the SUSE:SLE-12-SP3:Update update project. %NASLMINLEVEL 70300 C Tenable...

6CVSS7.2AI score0.00425EPSS
Exploits0References2
ALT Linux
ALT Linux
added 2019/04/02 12:0 a.m.35 views

Security fix for the ALT Linux 10 package edk2 version 20190308-alt1

April 2, 2019 Alexey Shabalin 20190308-alt1 - edk2-stable201903 Fixes: CVE-2018-12178, CVE-2018-12180, CVE-2018-12181, CVE-2018-3630...

6.8CVSS7.8AI score0.02271EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/04/01 12:0 a.m.31 views

SUSE SLES15 Security Update : ovmf (SUSE-SU-2019:0804-1)

This update for ovmf fixes the following issues : Security issues fixed : CVE-2019-0160: Fixed multiple buffer overflows in UDF-related codes in MdeModulePkg\Universal\Disk\PartitionDxe\Udf.c and MdeModulePkg\Universal\Disk\UdfDxe bsc1130267. CVE-2018-12181: Fixed a stack-based buffer overflow in...

9.8CVSS7.2AI score0.01338EPSS
Exploits0References7
OSV
OSV
added 2019/03/27 8:29 p.m.5 views

CVE-2018-12181

Stack overflow in corrupted bmp for EDK II may allow unprivileged user to potentially enable denial of service or elevation of privilege via local access...

6CVSS7.5AI score
Exploits0References8
CVE
CVE
added 2019/03/27 7:23 p.m.222 views

CVE-2018-12181

CVE-2018-12181 is confirmed in the provided connected documents as: a stack overflow in EDK II firmware when processing corrupted BMP data, which may allow a local attacker to cause denial of service or elevate privileges. Affected component: EDK II (firmware/EDK II BMP handling). Impact: local p...

6CVSS7.2AI score0.00425EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2019/03/27 9:33 a.m.6 views

SUSE-SU-2019:0766-1 Security update for ovmf

This update for ovmf fixes the following issues: Security issues fixed: - CVE-2019-0160: Fixed multiple buffer overflows in UDF-related codes in MdeModulePkg\Universal\Disk\PartitionDxe\Udf.c and MdeModulePkg\Universal\Disk\UdfDxe bsc1130267. - CVE-2018-12181: Fixed a stack buffer overflow in the...

9.8CVSS8AI score0.01338EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.28 views

SUSE SLES12 Security Update : ovmf (SUSE-SU-2019:0738-1)

This update for ovmf fixes the following issue : Security issue fixed : CVE-2018-12181: Fixed a stack-based buffer overflow in the HII database when a corrupted Bitmap was used bsc1128503. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...

6CVSS7.2AI score0.00425EPSS
Exploits0References4
OSV
OSV
added 2019/03/26 10:49 a.m.7 views

SUSE-SU-2019:0738-1 Security update for ovmf

This update for ovmf fixes the following issue: Security issue fixed: - CVE-2018-12181: Fixed a stack buffer overflow in the HII database when a corrupted Bitmap was used bsc1128503...

6CVSS7.9AI score0.00425EPSS
Exploits0References3
Rows per page
Query Builder