Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-14575

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.5AI score0.00363EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2020:0568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.01366EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2020:0699-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.01366EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2020:0495-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.19295EPSS
Exploits0References8
Mageia
Mageia
added 2021/01/17 4:7 p.m.106 views

Updated edk2 packages fix multiples security vulnerabilities

Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access. CVE-2018-12179. Insufficient memory write check in SMM service for EDK II may allow an authenticated...

9.8CVSS4AI score0.01366EPSS
Exploits0References7
OSV
OSV
added 2020/11/23 5:15 p.m.7 views

CVE-2019-14575

Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.8AI score
Exploits0References2
Cvelist
Cvelist
added 2020/11/23 4:11 p.m.23 views

CVE-2019-14575

Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8AI score0.00363EPSS
Exploits0References2
CVE
CVE
added 2020/11/23 4:11 p.m.160 views

CVE-2019-14575

CVE-2019-14575 affects the EDK II firmware, describing a logic issue in DxeImageVerificationHandler() that may let an authenticated local user escalate privileges. The vulnerability is documented across multiple advisories (edk2 firmware references and related Nessus/Debian/DLA entries). The avai...

7.8CVSS7.6AI score0.00363EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2020/11/23 4:11 p.m.31 views

CVE-2019-14575

Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.8AI score0.00363EPSS
Exploits0
ALT Linux
ALT Linux
added 2020/07/22 12:0 a.m.31 views

Security fix for the ALT Linux 9 package edk2-tools version 20200229-alt1

20200229-alt1 built July 22, 2020 Alexey Shabalin in task 254589 --- May 16, 2020 Alexey Shabalin - edk2-stable202002 Fixes: CVE-2019-14575, CVE-2019-14559, CVE-2019-14587, CVE-2019-14558, CVE-2019-14586, CVE-2019-14563...

5.2CVSS3.2AI score0.01308EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/06/25 12:0 a.m.54 views

EulerOS Virtualization for ARM 64 3.0.6.0 : edk2 (EulerOS-SA-2020-1689)

According to the versions of the edk2 package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Buffer overflow in the socket.recvfrominto function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3....

7.8CVSS7.7AI score0.28319EPSS
Exploits8References7
ALT Linux
ALT Linux
added 2020/05/16 12:0 a.m.46 views

Security fix for the ALT Linux 10 package edk2 version 20200229-alt1

May 16, 2020 Alexey Shabalin 20200229-alt1 - edk2-stable202002 Fixes: CVE-2019-14575, CVE-2019-14559, CVE-2019-14587, CVE-2019-14558, CVE-2019-14586, CVE-2019-14563...

5.2CVSS6.8AI score0.01308EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/05/01 12:0 a.m.34 views

EulerOS Virtualization for ARM 64 3.0.2.0 : edk2 (EulerOS-SA-2020-1574)

According to the versions of the edk2 package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Buffer overflow in the socket.recvfrominto function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3....

7.8CVSS7.7AI score0.28319EPSS
Exploits7References6
OpenVAS
OpenVAS
added 2020/05/01 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-4349-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.02271EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/05/01 12:0 a.m.38 views

Ubuntu 16.04 LTS / 18.04 LTS : EDK II vulnerabilities (USN-4349-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4349-1 advisory. A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of...

9.1CVSS7.3AI score0.02271EPSS
Exploits0References10
Ubuntu
Ubuntu
added 2020/04/30 10:54 p.m.81 views

USN-4349-1: EDK II vulnerabilities

A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. CVE-2018-12178 A buffer overflow was discovered in BlockIo service. An...

9.1CVSS7.3AI score0.02271EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/04/30 12:0 a.m.39 views

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2020-1574)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.28319EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2020/03/09 12:0 a.m.35 views

openSUSE Security Update : ovmf (openSUSE-2020-314)

This update for ovmf fixes the following issues : Security issues fixed : - CVE-2019-14563: Fixed a memory corruption caused by insufficient numeric truncation bsc1163959. - CVE-2019-14553: Fixed the TLS certification verification in HTTPS-over-IPv6 boot sequences bsc1153072. - CVE-2019-14559:...

7.8CVSS6.6AI score0.01366EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2020/03/09 12:0 a.m.29 views

openSUSE: Security Advisory for ovmf (openSUSE-SU-2020:0314-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.7AI score0.01366EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/02/27 12:0 a.m.36 views

SUSE SLES12 Security Update : ovmf (SUSE-SU-2020:0495-1)

This update for ovmf fixes the following issues : Security issues fixed : CVE-2018-0739: Update openssl to 1.0.2o to limit ASN.1 constructed types recursive definition depth bsc1094291. CVE-2019-14563: Fixed a memory corruption caused by insufficient numeric truncation bsc1163959. CVE-2019-14559:...

7.8CVSS6.7AI score0.19295EPSS
Exploits0References14
Rows per page
Query Builder