Lucene search
+L

289 matches found

ptsecurity
ptsecurity
added 2026/05/12 12:0 a.m.37 views

PT-2026-40079

Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...

5.6CVSS5.7AI score0.00095EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/05/06 7:56 p.m.10 views

CVE-2026-43171

A flaw was found in the Linux kernel's EFI/CPER component. This vulnerability occurs because the cperprintfwerr function does not adequately validate the length of error records against a provided offset. A malicious or malformed firmware could exploit this by providing an offset that causes an...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
cvelist
cvelist
added 2026/05/06 11:28 a.m.50 views

CVE-2026-43266 EFI/CPER: don't go past the ARM processor CPER record buffer

In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't go past the ARM processor CPER record buffer There's a logic inside GHES/CPER to detect if the sectionlength is too small, but it doesn't detect if it is too big. Currently, if the firmware receives an ARM process...

0.00119EPSS
Exploits0References8
nvd
nvd
added 2026/04/22 2:17 p.m.9 views

CVE-2026-6862

A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI Extensible Firmware Interface device path node header. A local user could exploit this...

5.5CVSS0.00104EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/04/22 2:17 p.m.9 views

CVE-2026-6862

A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI Extensible Firmware Interface device path node header. A local user could exploit this...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References1
osv
osv
added 2026/04/22 2:17 p.m.10 views

UBUNTU-CVE-2026-6862

A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI Extensible Firmware Interface device path node header. A local user could exploit this...

5.5CVSS5.3AI score0.00104EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/04/22 1:45 p.m.4 views

CVE-2026-6862 Efivar: efivar: denial of service due to stack overflow in device path node parsing

A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI Extensible Firmware Interface device path node header. A local user could exploit this...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/04/22 1:45 p.m.9 views

CVE-2026-6862

A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI Extensible Firmware Interface device path node header. A local user could exploit this...

5.5CVSS5.9AI score0.00104EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/04/21 12:0 a.m.15 views

PT-2026-46981

Name of the Vulnerable Software and Affected Versions 7-Zip versions 9.21 through 26.00 Description An off-by-one out-of-bounds read exists in the ParseDepedencyExpression function of the UEFI firmware image parser. The issue occurs because the function validates an attacker-controlled opcode byt...

7.1CVSS5.8AI score0.00225EPSS
Exploits1References31
cvelist
cvelist
added 2026/04/14 4:57 p.m.33 views

CVE-2026-0390 UEFI Secure Boot Security Feature Bypass Vulnerability

...

6.7CVSS0.00318EPSS
Exploits0References1
euvd
euvd
added 2026/03/25 12:30 p.m.9 views

EUVD-2026-15325

In the Linux kernel, the following vulnerability has been resolved: x86/efi: defer freeing of boot services memory efifreebootservices frees memory occupied by EFIBOOTSERVICESCODE and EFIBOOTSERVICESDATA using memblockfreelate. There are two issue with that: memblockfreelate should be used for...

5.5AI score0.00125EPSS
Exploits0References8
nvd
nvd
added 2026/03/25 11:16 a.m.6 views

CVE-2026-23352

In the Linux kernel, the following vulnerability has been resolved: x86/efi: defer freeing of boot services memory efifreebootservices frees memory occupied by EFIBOOTSERVICESCODE and EFIBOOTSERVICESDATA using memblockfreelate. There are two issue with that: memblockfreelate should be used for...

5.5CVSS0.00125EPSS
Exploits0References9
debiancve
debiancve
added 2026/03/25 10:27 a.m.6 views

CVE-2026-23352

In the Linux kernel, the following vulnerability has been resolved: x86/efi: defer freeing of boot services memory efifreebootservices frees memory occupied by EFIBOOTSERVICESCODE and EFIBOOTSERVICESDATA using memblockfreelate. There are two issue with that: memblockfreelate should be used for...

5.5CVSS5AI score0.00125EPSS
Exploits0
euvd
euvd
added 2026/03/11 12:31 a.m.9 views

EUVD-2025-208555

Exposure of resource to wrong sphere in the UEFI PdaSmm module for some IntelR reference platforms may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...

5.6CVSS5.7AI score0.00103EPSS
Exploits0References2
euvd
euvd
added 2026/03/11 12:31 a.m.6 views

EUVD-2025-208548

Improper input validation in the UEFI FlashUcAcmSmm module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable local code execution. This result may potentially occur via local...

8.7CVSS5.8AI score0.00115EPSS
Exploits0References2
euvd
euvd
added 2026/03/11 12:31 a.m.9 views

EUVD-2025-208542

Improper buffer restrictions in some UEFI firmware for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable data manipulation. This result may potentially occur via local access whe...

5.6CVSS5.9AI score0.00095EPSS
Exploits0References2
euvd
euvd
added 2026/03/11 12:31 a.m.6 views

EUVD-2025-208550

Improper input validation in the UEFI ImcErrorHandler module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

7.1CVSS5.7AI score0.00101EPSS
Exploits0References2
cvelist
cvelist
added 2026/03/10 10:49 p.m.27 views

CVE-2025-20068

Improper input validation in the UEFI ImcErrorHandler module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

7.1CVSS0.00101EPSS
Exploits0References1
cvelist
cvelist
added 2026/03/10 10:49 p.m.24 views

CVE-2025-20064

Improper input validation in the UEFI FlashUcAcmSmm module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable local code execution. This result may potentially occur via local...

8.7CVSS0.00115EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/03/10 10:49 p.m.4 views

CVE-2025-20027

Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

7.1CVSS5.7AI score0.00102EPSS
Exploits0References1
Rows per page
Query Builder