Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : edk2-20230524-4.el9 (AXSA:2023-6904:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6904:04 advisory. edk2: Function GetEfiGlobalVariable2 return value not checked in DxeImageVerificationHandler CVE-2019-14560 openssl: Possible DoS translating ASN.1...

6.5CVSS7.5AI score0.73461EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/25 7:58 a.m.3 views

edk2: Function GetEfiGlobalVariable2() return value not checked in DxeImageVerificationHandler()

REJECTED CVE A secure boot bypass vulnerability was found in EDK2 due to the lack of proper return value checks in the GetEfiGlobalVariable2 function. The API may fail if functions like AllocatePool or gRT-GetVariable fail. Without verifying the return value, an attacker could cause the API to...

7.1AI score
Exploits0References4
OSV
OSV
added 2021/05/24 11:2 a.m.3 views

OESA-2021-1192 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Integer overflow in DxeImageVerificationHandler EDK II may allow an authenticated user to potentially enable denial of service via local access.CVE-2019-14562...

5.5CVSS6.7AI score0.00306EPSS
Exploits0References2
OSV
OSV
added 2019/12/31 12:0 a.m.2 views

UBUNTU-CVE-2019-14575

Logic issue in DxeImageVerificationHandler for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.7AI score0.00363EPSS
Exploits0References3
Rows per page
Query Builder