Lucene search
K

24 matches found

nessus
nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2019-11098

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or...

6.8CVSS6.2AI score0.00345EPSS
Exploits0References3
openvas
openvas
added 2024/03/04 12:0 a.m.26 views

openSUSE: Security Advisory for ovmf (SUSE-SU-2023:0036-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.4AI score0.00345EPSS
Exploits0References2
nessus
nessus
added 2023/06/07 12:0 a.m.16 views

EulerOS Virtualization 2.11.1 : edk2 (EulerOS-SA-2023-2083)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of...

9.8CVSS7.7AI score0.59501EPSS
Exploits0References6
openvas
openvas
added 2023/06/07 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2023-2135)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.59501EPSS
Exploits0References2
openvas
openvas
added 2023/06/07 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2023-2083)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.59501EPSS
Exploits0References2
susecve
susecve
added 2023/02/15 4:12 a.m.3 views

SUSE CVE-2019-11098

Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access...

6.4CVSS6.8AI score0.00345EPSS
Exploits0References5
openvas
openvas
added 2023/01/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2023:0036-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.3AI score0.00345EPSS
Exploits0References4
nessus
nessus
added 2023/01/07 12:0 a.m.31 views

SUSE SLES15 Security Update : ovmf (SUSE-SU-2023:0036-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0036-1 advisory. - CVE-2019-11098: Fixed insufficient input validation in MdeModulePkg bsc1188371. Tenable has extracted the preceding description block...

6.8CVSS6.7AI score0.00345EPSS
Exploits0References4
osv
osv
added 2023/01/06 9:0 a.m.5 views

SUSE-SU-2023:0036-1 Security update for ovmf

This update for ovmf fixes the following issues: - CVE-2019-11098: Fixed insufficient input validation in MdeModulePkg bsc1188371...

6.8CVSS6.6AI score0.00345EPSS
Exploits0References3
nessus
nessus
added 2023/01/03 12:0 a.m.25 views

SUSE SLES15 Security Update : ovmf (SUSE-SU-2023:0004-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0004-1 advisory. - CVE-2019-11098: Fixed insufficient input validation in MdeModulePkg bsc1188371. Tenable has extracted the preceding description block...

6.8CVSS6.7AI score0.00345EPSS
Exploits0References4
openvas
openvas
added 2023/01/03 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2023:0004-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.3AI score0.00345EPSS
Exploits0References4
osv
osv
added 2023/01/02 9:32 a.m.6 views

SUSE-SU-2023:0004-1 Security update for ovmf

This update for ovmf fixes the following issues: - CVE-2019-11098: Fixed insufficient input validation in MdeModulePkg bsc1188371...

6.8CVSS6.6AI score0.00345EPSS
Exploits0References3
nessus
nessus
added 2022/04/18 12:0 a.m.47 views

EulerOS Virtualization 2.10.0 : edk2 (EulerOS-SA-2022-1416)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of...

8.1CVSS6.7AI score0.01855EPSS
Exploits2References4
nessus
nessus
added 2022/04/18 12:0 a.m.47 views

EulerOS Virtualization 2.10.1 : edk2 (EulerOS-SA-2022-1390)

According to the versions of the edk2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of...

8.1CVSS6.7AI score0.01855EPSS
Exploits2References4
openvas
openvas
added 2022/04/13 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2022-1416)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.4AI score0.01855EPSS
Exploits2References2
openvas
openvas
added 2022/04/13 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2022-1390)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.4AI score0.01855EPSS
Exploits2References2
openvas
openvas
added 2021/09/24 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-5088-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.8AI score0.50732EPSS
Exploits1References2
redhatcve
redhatcve
added 2021/09/23 9:42 p.m.51 views

CVE-2019-11098

An improper input validation flaw in the MdeModulePkg module of edk2 may allow an unauthenticated attacker with physical access to the system handled by edk2 to escalate his privileges and cause a denial of service or disclose information...

6.8CVSS3.7AI score0.00345EPSS
Exploits0References4
ubuntu
ubuntu
added 2021/09/23 11:39 a.m.130 views

USN-5088-1: EDK II vulnerabilities

It was discovered that EDK II incorrectly handled input validation in MdeModulePkg. A local user could possibly use this issue to cause EDK II to crash, resulting in a denial of service, obtain sensitive information or execute arbitrary code. CVE-2019-11098 Paul Kehrer discovered that OpenSSL use...

8.1CVSS7.3AI score0.50732EPSS
Exploits1
osv
osv
added 2021/09/23 11:39 a.m.22 views

USN-5088-1 edk2 vulnerabilities

It was discovered that EDK II incorrectly handled input validation in MdeModulePkg. A local user could possibly use this issue to cause EDK II to crash, resulting in a denial of service, obtain sensitive information or execute arbitrary code. CVE-2019-11098 Paul Kehrer discovered that OpenSSL use...

8.1CVSS7AI score0.50732EPSS
Exploits1References5
Rows per page
Query Builder